Fidelity data breach affects 28,000+ customers

Fidelity data breach overview: 

• Who: Fidelity Investments Life Insurance Co. said more than 28,000 of its customers may have had their personal information compromised during a data breach involving third-party services provider Infosys McCamish Systems (IMS). 
• Why: Fidelity said the October 2023 data breach was the result of an unauthorized third party obtaining customer information being held by IMS. 
• Where: The Fidelity data breach affects certain Fidelity customers nationwide. 

Fidelity Investments Life Insurance Co. informed more than 28,000 customers earlier this month that it suffered an October 2023 Fidelity data breach that compromised personal information held by a third-party services provider. 

Fidelity, in a sample notice submitted to the Maine attorney general’s office, told its customers the data breach likely was the result of an unauthorized third party obtaining information held by third-party services provider Infosys McCamish Systems (IMS). 

The data breach, which Fidelity said was discovered Feb. 13, may have exposed certain Fidelity customers’ name, Social Security number, state of residence, bank account and routing number and birthdate, according to the letter. 

“We take this event and the security of personal information in our care and in the care of our vendors very seriously,” Fidelity said in the letter. 

Fidelity notified of ‘cybersecurity event’ in November

Fidelity said IMS notified it in early November about a “cybersecurity event” that disrupted in its services provided to Fidelity and that, upon hearing about the event, Fidelity “quickly engaged” with IMS to understand what happened and to determine its effects.  

“Once IMS provided indication that data about some (Fidelity) customers may have been exfiltrated by the third party, we conducted a manual review of our records to identify the individuals potentially affected by this event,” Fidelity said. 

Fidelity told customers it is not aware of any of their personal information being misused as a result of the data breach, but is offering free credit monitoring and identity restoration services for 24 months with TransUnion Interactive. 

The Fidelity data breach is just one of a number of recent data breaches affecting companies such as Microsoft, Dropbox, Twitter, Hershey, 23andMe and more that have exposed company information or consumers’ or employees’ private and personally identifiable information. 

Were you affected by the Fidelity data breach? Let us know in the comments.

Read About More Class Action Lawsuits & Class Action Settlements:

• American Express data breach exposes customer names, card numbers, more
• Consumers file class actions over American Vision Partners data breach
• Golden Corral class actions allege company failed to safeguard employees’ data
• U-Haul data breach affects customers in US, Canada