Rumpke Waste & Recycling has recently confirmed a security breach that exposed sensitive personal data of current and former employees, as well as their dependents. On October 11, 2024, the company became aware of a dark web post claiming that an attacker had accessed and removed data from its IT systems. The breach, which began on July 20, 2024, occurred after a user account was compromised, granting unauthorized access to parts of the company’s network. Rumpke acted swiftly to contain the breach and initiated an investigation, enlisting the help of legal experts, computer forensics teams, and the FBI.
The breach affected individuals enrolled in the Rumpke Consolidated Companies, Inc. & Affiliates Benefits Plan from 2015 to July 2024. The exposed data includes sensitive information such as names, addresses, dates of birth, phone numbers, and email addresses. In addition, the attackers may have gained access to health insurance details, including enrollment and account information, as well as health billing data, such as claim numbers and payment amounts. Other personal data, such as Social Security numbers and financial account information, may have also been exposed.
While Rumpke has emphasized that there is currently no evidence of misuse of the compromised data, the company is taking extensive precautions to protect the affected individuals. The company is offering support and guidance to those impacted, including providing resources to help safeguard against identity theft and fraud. Rumpke is committed to addressing the privacy concerns of its employees and their families and has implemented additional security measures to prevent future incidents.
As the investigation continues, Rumpke Waste & Recycling is working closely with cybersecurity experts to ensure that all necessary steps are taken to safeguard the company’s systems. The company has assured affected individuals that it is doing everything in its power to address the breach and prevent future security risks. This incident highlights the growing concerns surrounding cybersecurity in businesses and underscores the importance of safeguarding sensitive data in the face of increasing cyber threats.
Reference:
