American Wholesale Furniture Company Announces Data Breach | Console and Associates, PC

On August 5, 2022, American Wholesale Furniture Company (“AWF”) reported a data breach to the State Attorney General’s office. At this early stage, little is known about the violation of the AWF; However, state data breach reporting laws require companies to report a breach whenever a consumer’s name and one or more of the following types of data are disclosed: social security numbers, driver’s license numbers , bank account or credit card numbers or medical records. So, while this cannot be confirmed, it is likely that the American Wholesale Furniture breach affected one or more of these types of data. After confirming the breach and identifying all affected parties, American Wholesale Furniture began sending data breach letters to all affected parties.

If you have received a data breach notification, it is essential that you understand what is at risk and what you can do about it. To learn more about how to protect yourself from fraud or identity theft and what legal options are available to you following the American Wholesale Furniture data breach, please see our recent article on the topic. here.

What we know about the wholesale furniture data breach in the United States

Information about the American Wholesale Furniture Company data breach comes from documents the company filed with the state attorney general’s office. According to the most recent information, on March 8, 2022, AWF learned that the company was the victim of a cyberattack that potentially affected sensitive information in its possession. In response, AWF secured its systems and then launched an investigation into the incident with the help of third-party cybersecurity specialists.

On July 3, 2022, American Wholesale Furniture completed its investigation, confirming unauthorized access to certain files containing sensitive consumer information. Next, American Wholesale Furniture began the process of reviewing all affected files to determine what information was compromised and which consumers were impacted by the incident. Unfortunately, the publicly available information provided by the company does not indicate what types of data were leaked as a result of the incident. However, it is likely that one or more of the following has been compromised: social security numbers, driver’s license numbers, bank account or credit card numbers, or medical records.

On August 5, 2022, American Wholesale Furniture sent data breach letters to everyone whose information was compromised as a result of the recent data security incident.

More information about American Wholesale Furniture Company

Founded in Indianapolis, Indiana in 1986, American Wholesale Furniture Company is a furniture wholesaler that sells a wide range of home furnishings to retailers and rental-to-own stores. The company delivers between 600 and 800 stores per week and also allows dealers to order stock through the company’s website, www.awfco.com. American Wholesale Furniture employs over 87 people and generates approximately $16 million in annual revenue.

How do hackers carry out data breaches?

Data breaches are increasingly in the headlines. One of the reasons for this is that the number of data breaches has increased dramatically in recent years. However, despite the fact that more than 189 million people were affected by a data breach in 2021, many consumers and businesses underestimate the damage these incidents can cause.

The reason hackers and cybercriminals carry out our data breaches is to obtain sensitive consumer information that they can use themselves to defraud victims or sell to a third party. Hackers can orchestrate a data breach in different ways.

Most data breaches involve malware or ransomware attacks. Malware, or malicious software, is any program intended to disrupt the normal operation of a company’s computer system. Most malicious programs are designed to leak information on the corporate network and send that information back to hackers.

Hackers also steal consumer information via ransomware attack. Ransomware attacks use a specific type of malware that encrypts some or all of the victim’s files, preventing them from accessing their device. When the victim tries to log back into their computer, they get a message from the hackers demanding that they pay a ransom.

Although these two types of cyberattacks differ slightly in how they are carried out, the end result is the same: hackers end up with sensitive consumer information. Although hackers can target any type of data, they usually target the most profitable types of data. These include:

Given the importance of this information and the relative ease with which hackers can use it to steal a victim’s identity or commit other types of fraud, it is critical that data breach victims understand their rights and what they can do to protect themselves in the event of a violation. of a data breach.