The Detroit Symphony Orchestra (DSO) recently reported a data breach that compromised sensitive personal information, affecting thousands of individuals. The breach was initially detected on September 27, 2023, when the DSO noticed unusual activities that restricted access to specific systems within their network. This prompted the organization to initiate an incident management process and engage cybersecurity professionals to investigate the scope and impact of the breach.
The investigation revealed that an unauthorized actor had gained access to the DSO’s network between September 19 and September 27, 2023. During this period, the attacker was able to obtain certain data, which included the names and Social Security numbers of individuals. As a result, the personal information of at least 6,778 people was exposed, raising concerns about potential identity theft and financial fraud against those affected.
In response to the discovery of the breach, the DSO has taken several steps to secure its network and prevent further unauthorized access. They have sent notifications to the affected individuals via first-class U.S. mail on April 1, 2024, informing them of the breach and the specific information that was compromised. This notification is part of the DSO’s commitment to transparency and its efforts to mitigate the damage caused by the breach.