CITY HARVEST PROVIDES DATA SECURITY INCIDENT NOTICE
NEW YORK, July 8, 2022 /PRNewswire/ — City Harvest, Inc. (“City Harvest”) is reporting an incident that may affect the security of personal information stored on its systems. This notice includes information about the incident, the response, and the steps affected parties can take to protect themselves against possible misuse of their information, if they deem it necessary.
What happened? On January 20, 2022, City Harvest has discovered suspicious activity on its systems. In response, the organization immediately launched an investigation and worked with external forensic specialists to secure its systems and investigate the nature and extent of the incident. The investigation determined that an unauthorized actor accessed certain systems on City Harvest’s network and acquired certain files stored on those systems between January 19, 2022and January 29, 2022. A thorough review of acquired files and folders was performed with the assistance of an external vendor to identify any sensitive information stored therein and to whom it relates. On June 10, 2022City Harvest received the results of the extensive review and determined that the affected files contained personal information relating to some of its constituents.
What information was involved? The types of personal information that may have been affected vary for each individual. The types of information involved may include name, date of birth, social security number, driver’s license number, financial account information, medical information, and health insurance information.
How will individuals know if they are affected by this incident? City Harvest sends notification letters to those identified as affected for whom they have a current mailing address. If someone does not receive a letter but would like to know if they are affected, they can call City Harvest’s dedicated helpline listed below.
What City Harvest does. As soon as the suspicious activity was detected, City Harvest worked to contain the incident and secure its systems. City Harvest is committed to protecting the information of its constituents. As part of this commitment, the organization is reviewing and strengthening its existing cybersecurity-related policies, procedures and systems.
Although City Harvest has no evidence of identity theft or attempted fraud or impersonation resulting from this incident, it is notifying those affected so they can take steps to help protect their personal information, if they believe it is appropriate. City Harvest has arranged for IDX to provide identity monitoring services to affected parties free of charge for twenty-four (24) months as an additional precaution. Affected parties will need to register for these services directly as City Harvest is unable to do so on behalf of an individual.
What you can do. City Harvest encourages individuals to remain vigilant against incidents of identity theft and fraud by reviewing their account statements and, if applicable, signing up for free credit monitoring services offered through IDX and monitoring reports free credit cards to detect suspicious activity over the next 12 years. at 24 months. Further information about the steps data subjects can take to protect their information is available at CityHarvest.org and will be included in notification letters sent directly to data subjects.
For more information. Individuals with questions about this incident or who believe they may be affected by this incident may contact City Harvest’s dedicated call center at 1-833-423-2981 between 9am – 9 p.m. Eastern TimeMonday to Friday, except public holidays.
SOURCE City Harvest