DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Willdan Group, Inc. (“Willdan”) Provides Notice Of Data Privacy Incident

Posted on August 20, 2021 by Dissent

The following press release relates to an incident that Conti claimed in February, 2021. Conti dumped data from the entity on March 1, 2021 consisting of of more than 136 GB of data in 97,000 files.

ANAHEIM, Calif., Aug. 18, 2021 /PRNewswire/ — Willdan Group, Inc. (“Willdan”) is providing notice of a recent incident that may affect the security of information pertaining to certain individuals. The confidentiality, privacy, and security of information in Willdan’s care is one of its highest priorities and Willdan takes this incident very seriously.  Although Willdan has not received any reports of actual or attempted misuse of the impacted information, Willdan is providing this notice in an abundance of caution.

What Happened?  On December 15, 2020, Willdan learned that its direct installation subsidiary, Lime Energy, was the target of a cybercriminal attack and that portions of its computer network were infected with malware. We immediately took systems offline and, with the assistance of third-party forensic specialists, launched an investigation to determine the nature and scope of the incident. On or about March 1, 2021, the investigation confirmed that certain files on Lime Energy’s systems may have been accessed without authorization and subsequently published online by the cybercriminal. We therefore undertook a lengthy and time-intensive, thorough review of the potentially impacted files and our internal systems in order to identify the information that was involved and to whom it related. In connection with this review, on or about March 1, 2021, a third-party firm was engaged to programmatically and manually review the large volume of files at issue to identify impacted individuals and the types of data associated with those individuals. Concurrently, Willdan internally reviewed their databases and, on or about June 18, 2021, first determined that one or more of the potentially impacted folders included information related to individuals.

In conjunction and collaboration with the third-party review team, Willdan continued to diligently review the information and reconcile the information with internal and public records in furtherance of identifying the individuals to whom the data relates and the appropriate contact information for these individuals. These efforts were completed on or around July 23, 2021, at which time Willdan determined the scope of impacted individuals and the types of protected data associated with those individuals as a result of the extensive internal review.

We thereafter worked to provide notification to potentially impacted individuals as quickly as possible. Importantly, there is no indication that anyone’s specific information was misused. However, we are notifying potentially impacted individuals out of an abundance of caution.

What Information Was Involved?  Our investigation determined that the information that may have been potentially affected includes name, Social Security number, driver’s license number, medical diagnosis and/or treatment information, financial account number, routing number, payment card number and payment card CVV number, and biometric data. The information impacted was not the same for every individual.

What Are We Doing? Information security is among Willdan’s highest priorities, and we have strict security measures in place to protect information in our care. Upon discovering this incident, we immediately took steps to review and reinforce the security of our systems. We are reviewing existing security policies and have implemented additional cybersecurity measures to further protect against similar incidents moving forward. We reported this incident to law enforcement and are cooperating with their investigation. We are notifying potentially impacted individuals so that they may take steps to protect their information.

For More Information.  You may have questions about this incident that are not addressed in this letter. If you have additional questions and are impacted by this incident, please write to Willdan at 2401 E. Katella Avenue, Suite 300, or call Willdan at our dedicated assistance line at 1-833-704-9394, Monday through Friday, 6:00 a.m. to 8:00 p.m. PST, excluding national holidays, and Saturday and Sunday from 8:00 a.m. to 5:00 p.m. PST.

Read more on PR Newswire.

Related:

  • Two more entities have folded after ransomware attacks
  • British institutions to be banned from paying ransoms to Russian hackers
  • Data breach feared after cyberattack on AMEOS hospitals in Germany
  • Michigan ‘ATM jackpotting’: Florida men allegedly forced machines to dispense $107K
  • Premier Health Partners issues a press release about a breach two years ago. Why was this needed now?
  • Authorities released free decryptor for Phobos and 8base ransomware
Category: Business SectorHealth DataMalwareU.S.

Post navigation

← Renner Stores Goes Down After Ransomware Infection
MO: Rockwood School District Provides Notice of Ransomware Incident →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Scattered Spider is running a VMware ESXi hacking spree
  • BreachForums — the one that went offline in April — reappears with a new founder/owner
  • Fans React After NASCAR Confirms Ransomware Breach
  • Allianz Life says ‘majority’ of customers’ personal data stolen in cyberattack (1)
  • Infinite Services notifying employees and patients of limited ransomware attack
  • The safe place for women to talk wasn’t so safe: hackers leak 13,000 user photos and IDs from the Tea app
  • Au: Qantas hackers gave airline 72-hour deadline
  • Honeywell vulnerability exposes building systems to cyber attacks
  • Recent public service announcements of note — parents should take special note of these
  • Au: Junior doctor faces fresh toilet spying charges as probe widens to other major hospitals

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • Microsoft’s controversial Recall feature is now blocked by Brave and AdGuard
  • Trump Administration Issues AI Action Plan and Series of AI Executive Orders
  • Indonesia asked to reassess data privacy terms in new U.S. trade deal
  • Meta Denies Tracking Menstrual Data in Flo Health Privacy Trial
  • Wikipedia seeks to shield contributors from UK law targeting online anonymity
  • British government reportedlu set to back down on secret iCloud backdoor after US pressure
  • Idaho agrees not to prosecute doctors for out-of-state abortion referrals

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.
Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report