Group 1001 Update on Ransomware Attack

July 28, 2023 Group 1001, Inc. would like to provide an update to our stakeholders concerning the February 9, 2023, ransomware attack on our information technology infrastructure.

As previously reported, we immediately launched an investigation to determine the full scope of the incident, and a team of leading third-party forensic experts was engaged to assist in the investigation. The investigation revealed that the threat actor accessed certain of our file shares and copied a limited amount of information before deploying the ransomware.

It is important to note that we have not received any reports that personal information has been subject to fraudulent activity.

Over the past several months, we have been analyzing the impacted files since fully recovering our systems to understand what personal information may be at risk. We have begun the process of notifying the individuals whose personal information is confirmed to have been included. Impacted individuals will soon be receiving a letter that will explain how to enroll in the following services.

We are offering impacted individuals a number of identity protection services through IDX, a data breach and recovery services expert. The IDX identity protection package includes: Experian, Equifax, and TransUnion credit monitoring, CyberScan™ dark web monitoring, identity theft insurance (for up to $1,000,000 with no deductible), and fully-managed identity restoration services. We are offering these services to affected individuals free of charge for 24 months. IDX’s U.S.-based call center will be available to answer any questions.

To help prevent a similar occurrence in the future, we have implemented numerous additional measures designed to enhance the security of our network, systems, and data.
For further questions about this incident, please email our incident response team at: [email protected].