Daedong-USA, Inc. (Kioti Tractor Division) (“DD-USA”) has disclosed a significant cybersecurity breach that compromised the personal information of more than 10,600 individuals, including 176 residents of Maine. Impacted individuals are urged to remain vigilant by monitoring financial statements, updating passwords, and staying alert to phishing attempts. For more information, visit our guide on how to protect your information after a data breach and minimize potential harm.
Daedong-USA Data Breach Details
The breach, which was caused by an external hacking incident, remained undetected for nearly ten months before being discovered on October 31, 2024. According to company officials, the breach occurred on or around January 12, 2024, when an unauthorized party gained access to certain internal systems.
The company revoked the unauthorized party’s access and enlisted third-party forensic experts to investigate the breach. Following an internal investigation, DD-USA confirmed in mid-October that the attackers had obtained sensitive personal information.
Given that the number of affected Maine residents exceeded 1,000, consumer reporting agencies have been notified as required by law. In response to the breach, affected individuals are entitled to one free credit report per year from each of the three nationwide consumer reporting agencies.
What Information Was Compromised?
The types of data affected varied by individual but included:
- Names and contact details (e.g., postal addresses and phone numbers)
- Dates of birth
- Copies of government-issued identification documents (driver’s licenses and passports)
- Social Security numbers
- Bank account and payment card information
- Medical and health-related information
- Health insurance details
- Usernames and passwords
- Work-related information, including evaluations
