Fitzgerald, DePietro & Wojnas CPAs, P.C. (FDW), a tax and business consulting firm based in Utica, New York, recently filed a notice of a data breach with the Attorney General of Montana. The incident, which was detected on June 19, 2024, involved unauthorized access to the company’s IT network by a threat actor who placed malicious code to encrypt files. This breach exposed sensitive information, including names, Social Security numbers, dates of birth, marital statuses, addresses, phone numbers, and financial details. On September 26, 2024, FDW notified impacted individuals about the breach and the potential exposure of their data.
The company’s investigation revealed that the breach extended to tax documents and other sensitive client files. Upon discovering the intrusion, FDW acted swiftly to mitigate the attack and secure its network. Despite these efforts, they confirmed that unauthorized parties had accessed a range of personal and financial data. The review process to identify affected individuals concluded on August 26, 2024, and notification letters were sent to those impacted to provide clarity on the specific information compromised.
Founded in 1920, Fitzgerald, DePietro & Wojnas CPAs, P.C. has established itself as a trusted provider of tax preparation, tax planning, estate planning, payroll services, and more. With over 25 employees and an annual revenue of $5 million, the company serves both individual and business clients. This long-standing reputation is now under scrutiny following the breach, which highlights the importance of robust cybersecurity measures for companies handling sensitive information.
FDW emphasized its commitment to addressing the breach by implementing enhanced security protocols to prevent future incidents. The firm’s response to the breach includes efforts to assist affected clients, urging them to monitor their financial accounts and remain vigilant against fraud. This incident serves as a critical reminder of the risks associated with data breaches and the need for continuous advancements in protecting consumer information.
Reference:
