ROCHESTER, N.Y. (WROC) — A lawsuit was filed against Premium Mortgage Corporation claiming a data breach put customers’ private information in danger.
According to the lawsuit filed by plaintiff Cory Rehmsmeyer, the company did not notify its customer base about the data breach until four months later. The breach occurred around the end of August.
In a statement released Friday morning, the Rochester-based mortgage company says that the breach was caused by an attachment emailed from a government address. They add that they have not been the only company affected by it.
Officials from the company, after an investigation, determined it does not appear that customer information was affected by this breach, but they are offering to pay for credit monitoring to its customers if requested. They shared the following message to their customers:
“ On or about August 31, 2023, PMC discovered suspicious activity occurring on certain parts of its computer system. Upon learning of the activity, PMC quickly commenced an investigation that included working with third-party cybersecurity specialists to understand the nature and scope of the activity. Our investigation determined that, in connection with the suspicious activity, there was unauthorized access to certain PMC business email accounts between August 24, 2023, and August 31, 2023. We then undertook an exhaustive review of the data present in the email accounts to identify the information that was accessible to the unauthorized actor and to whom that information related. On November 29, 2023, the review determined that some of your information resided in one of the accounts. “