2024-10-08 CREDITRISKMONITOR COM INC Cybersecurity Incident

Page last updated on October 8, 2024

CREDITRISKMONITOR COM INC initially disclosed a cybersecurity incident in an SEC 8-K filing on 2024-10-08 06:42:02 EDT.

Company Summary

CreditRiskMonitor is a publishing company specializing in business credit analysis, scores, and news.

Incident Details

Material: Unknown
Is Breach: TRUE
Records Compromised: Unknown
Data Types Impacted: No Data Types Tracked (yet)

Compromised Date: 2024-07-08
Detected Date: 2024-07-19
Disclosure Date: 2024-10-08
Contained Date:
Recovered Date:

Attack Goal: Unknown

Costs: No Costs Tracked (yet)

Filings

8-K filed on 2024-10-08

CREDITRISKMONITOR COM INC filed an 8-K at 2024-10-08 06:42:02 EDT
Accession Number: 0001140361-24-043034

Item 8.01 Other Events.

On July 19, 2024 CreditRiskMonitor.com, Inc. (“Company” or “CRMZ”) detected unauthorized occurrences within its computer network. Upon detecting the unauthorized occurrences, the Company immediately activated its incident response plan and began taking steps to contain, assess and remediate the incident, including conducting an investigation with third-party cybersecurity specialists. CRMZ reported the incident to law enforcement and continues to cooperate with law enforcement’s investigation. The incident has not had a material impact on the Company’s operations, and its information systems have continued to be fully operational.

The Company’s investigation determined that certain files stored within CRMZ’s computer environment may have been viewed or copied by an unauthorized actor between July 8, 2024 and July 17, 2024. CRMZ reviewed the files that could have been viewed or copied to determine whether any sensitive information was contained within those files. The Company’s investigation concluded that personally identifiable information of employees and independent contractors, not customers, may have been viewed or copied by an unauthorized actor. Although CRMZ is not aware of any attempted or actual misuse of that personally identifiable information, on October 8, 2024, CRMZ issued notices to individuals whose personal information was stored within the impacted files so that they may take steps to protect their information, if they feel it is appropriate to do so. CRMZ is offering access to credit monitoring and identity theft protection services at no cost to those individuals for twenty-four (24) months.

As of the date of this filing, the incident has not had a material impact on the Company’s operations. The Company has not yet determined that the incident is reasonably likely to materially impact the Company’s overall financial condition or its ongoing results of operations. However, the situation remains fluid and CRMZ will continue to assess if and when such developments are reasonably likely to impact its financial condition and results of operations.

Company Information