New TSI Holdings, Inc., operating as New York Sports Club, notified the California Attorney General on September 26, 2024, about a data breach affecting 19,836 individuals. The breach involved unauthorized access to sensitive employee information, including names, Social Security numbers, and passport numbers. Following an investigation, New York Sports Club began sending notification letters to those impacted, advising them on potential risks and available legal options. The breach appears to have resulted from a cyberattack that prompted New York Sports Club to enhance its cybersecurity measures and secure its network.
Although the investigation is ongoing, it was confirmed that confidential information belonging to employees was compromised. The club’s response included a thorough review of the compromised files to identify what data was leaked and to whom it belonged. New York Sports Club emphasized the importance of understanding the risks associated with the breach and encouraged affected individuals to take protective measures against potential fraud or identity theft.
Victims received letters detailing the specific information that was compromised, allowing them to take appropriate action in response to the data breach. Founded in 1973 and based in Brooklyn, New York, New York Sports Club operates fitness clubs in five states, employing over 6,100 individuals and generating about $1 billion in annual revenue. The company remains committed to improving its cybersecurity efforts to prevent future incidents and protect its employees’ sensitive information.
Reference:
- https://oag.ca.gov/ecrime/databreach/reports/sb24-592496
