Apellis Pharmaceuticals recently informed individuals about a cybersecurity incident involving unauthorized access to an employee’s email account. The breach was discovered on August 28, 2024, after an unknown actor gained access to the email between August 26 and August 27, 2024. Apellis took immediate action to contain the incident and began a thorough investigation to determine the extent of the breach. The investigation revealed that personal information may have been accessed and acquired by the unauthorized party.
The types of personal information involved in the breach included individuals’ names, addresses, and financial account and routing numbers. Apellis has taken multiple steps to protect the affected data and prevent future breaches. These measures included reviewing the impacted accounts, conducting malware scans, remediating malicious content, and resetting the compromised accounts. Additionally, Apellis has enhanced employee awareness of security best practices to prevent similar incidents from occurring in the future.
While there is no indication that personal information has been misused, Apellis has arranged for affected individuals to receive 12 months of complimentary identity monitoring services from Kroll. This service includes credit monitoring, fraud consultation, identity theft restoration, and up to $1 million in identity fraud loss reimbursement. Apellis strongly encourages individuals to activate these services as soon as possible in order to benefit from the protection offered.
To further safeguard their personal information, individuals are advised to stay vigilant by monitoring their accounts for any signs of unauthorized activity and reviewing their credit reports regularly. Apellis also provides guidance on how to activate the identity monitoring services and offers additional information on protecting against identity theft. The company reassured individuals that they are taking the incident seriously and deeply regret any inconvenience or concerns caused.
Reference:
