In June 2024, Innophos, a food and beverage manufacturing company based in Cranbury, New Jersey, discovered suspicious activity within its computer network. The company launched an internal investigation to determine the extent of the data breach. It was revealed that sensitive personal information stored in Innophos’s systems might have been accessed by unauthorized actors. This breach may have exposed data such as names, Social Security numbers, account details, passwords, and driver’s license numbers.
Innophos’s investigation aimed to clarify what specific information had been impacted and identify the individuals affected by the breach. While the company has not publicly disclosed the full scope of the compromised data, it followed state reporting guidelines that highlight a range of sensitive personal information that could be involved. The company immediately began addressing the security vulnerabilities and strengthened its network security in response to the breach.
On August 22, 2024, Innophos mailed breach notification letters to impacted individuals, informing them of the incident and offering assistance. The company is providing 24 months of complimentary credit monitoring services to help mitigate potential harm caused by the breach. These services aim to offer protection and peace of mind for those affected, covering a range of identity protection and monitoring solutions.
Innophos, with over 1,000 employees and operations across China, Canada, Mexico, and the United States, remains committed to resolving the situation. The company continues to work closely with security professionals to enhance its network defenses and ensure the security of its data. This incident highlights the growing cybersecurity risks that businesses face and underscores the importance of taking proactive measures to protect sensitive information.
Reference:
