Crossroads Equipment Lease & Finance, LLC informs its valued customers about a cybersecurity incident that occurred on April 2, 2023. The breach affected their computer systems, hindering access to digital files and disrupting essential business functions, such as ACH payments. Though there’s no concrete evidence of personal information misuse, the compromised data may include sensitive details like names, addresses, social security numbers, and financial information.
The company became aware of the incident’s nature and scope on January 25, 2024, prompting the notification to customers. Crossroads emphasizes its commitment to customer privacy and security, assuring that immediate steps were taken. On April 3, 2023, the company secured system access, initiated data migration to a cloud server with enhanced security, and implemented additional technical and organizational controls. Additionally, the Federal Bureau of Investigation was notified on April 5, 2023, and customers are given the right to obtain a copy of the notice to the FBI. Following a thorough investigation, Crossroads has introduced enhanced security controls, including multi-factor authentication, user-restricted access, redundant data backups, and continuous monitoring to prevent future incidents.
