“AST LLC” Announces Data Breach and Circulates Notices to Employees

  • “AST LLC” has suffered a data breach after an unknown attacker accessed employee 2019 W-2 forms.
  • The cloud and digital transformation service provider is now covering the exposed employees with 12 months of identity theft protection.
  • W-2 forms contain very sensitive information like full names, home addresses, tax details, and employer information.

“AST LLC” has announced a data breach and is now sending notices to its employees to inform them that they have been compromised. The incident occurred on March 9, 2020, when someone managed to access employee payroll information by using a previously compromised email employee address. In fact, the infiltrator set up rules that diverted the messages received by the employee to the hacker's address, so the realization of the breach wasn’t immediate. The information that was accessed by the unknown party involves the employees’ 2019 W-2 wage and tax statements.

AST is an enterprise systems services provider and integrator that has clients in both the public and commercial sectors, but the particular security incident hasn’t affected the data of any of its customers. The company has already scanned its systems thoroughly to locate and clean any malware infections and has now implemented two-factor authentication protection on the email accounts of all its employees. Moreover, they have contracted “CORE BTS” to help them conduct a full vulnerability assessment and recommend mitigations, fixes, and improvements.

As for the affected personnel, they will receive a 12-month free identity theft prevention service from “LifeLock Defender.” All that the compromised individuals need to do now in order to register is to call “800-899-0180.” Still, the affected people should be careful with how they handle and respond to unsolicited communication, phishing, or scamming attempts reaching them via SMS or email. If something suspicious comes to your attention, make sure to report it immediately to the relevant service of the Federal Trade Commission (FTC) by calling “877-438-4338.” Those who feel uncomfortable or notice an activity they can’t recognize on their credit report are advised to place a security freeze on their bank accounts too.

The information that is contained in W-2 forms includes the person’s name, address, ZIP code, wages, social security details, tax details, the employer identification number (EIN), control number, employer name, and other information. That said, the actors managed to get their hands on very sensitive data. From now on, this data may be used by the network infiltrators or sold to others on the dark web. It means the exploitation and targeting of potential victims may not happen right now but in months and even years after the initial incident. It is nice to have 12 months of identity theft protection services, but you should remain vigilant after this period ends.

Latest
How to Watch World Cup 2022 Online: Live Stream Soccer Matches for Free from Anywhere
It was the Kylian Mbappe show as France booked their place in the quarterfinals of the 2022 FIFA World Cup with a...
Monday Night Football Live Stream: How to Watch Online From Anywhere
Love the NFL? Want to catch all the action of the most exciting games but don't know how to do it? You're...
How to Watch Barmageddon Online: Stream the Blake Shelton & Carson Daly Game Show From Anywhere
This December, get ready to be entertained by the latest upcoming celebrity game show, Barmageddon. The great news is that you will...
For a better user experience we recommend using a more modern browser. We support the latest version of the following browsers: For a better user experience we recommend using the latest version of the following browsers: Chrome, Edge, Firefox, Safari