Zenith American Solutions, Inc. (Zenith) has reported a data security incident resulting from a sophisticated phishing attack that compromised an employee’s email account. The company promptly notified law enforcement and regulatory authorities, including the Maine Attorney General. A total of 11,029 individuals were affected by the breach, including 46 residents of Maine.
Although no evidence of data misuse has been confirmed, Zenith is informing affected individuals and implementing measures to mitigate potential risks. Impacted individuals are urged to remain vigilant by monitoring financial statements, updating passwords, and staying alert to phishing attempts. For more information, visit our guide on how to protect your information after a data breach and minimize potential harm.
Zenith American Solutions Data Breach Details
The breach, which occurred on September 6, 2024, allowed unauthorized access to several email folders containing sensitive personal information.
According to Zenith American Solutions, the compromised data varies by individual and may include names, dates of birth, Social Security numbers, birth certificates, marriage certificates, and financial or banking details.
This is not Zenith’s first data security issue. In July 2022, the company reported a breach to the U.S. Department of Health and Human Services Office for Civil Rights that affected 37,146 individuals and involved protected health information (PHI), highlighting past vulnerabilities in its security measures.
While no misuse of the exposed data has been identified, Zenith is offering complimentary identity monitoring and protection services through Experian® IdentityWorks.