Financial Business and Consumer Solutions (FBCS) is warning 1,955,385 impacted individuals in the United States that the company suffered a data breach after discovering unauthorized access to specific systems in its network.

FBCS is a nationally licensed debt collection agency in the U.S., specializing in collecting unpaid debts from consumer credit, healthcare, commercial, auto loans and leases, student loans, and utilities.

According to a data breach notification sample the firm shared with the authorities late last week, on February 26, 2024, it discovered that unauthorized actors had breached its network since February 14, 2024.

The data that the network intruders could have accessed during the exposure period includes:

• Full name
• Social Security Number (SSN)
• Date of birth
• Account information
• Driver’s license number or ID card

This information increases the risk of exposing individuals to phishing, fraud, and social engineering attacks. To alleviate this scenario, FBCS encloses instructions for the notice recipients on enrolling for 12 months of credit monitoring through Cyex.

FBCS says it has implemented additional security measures in a newly built environment to prevent similar incidents from occurring in the future.

Recipients of the data breach notifications are recommended to remain vigilant against unsolicited communications and monitor their account statements and credit reports for suspicious activity.

By the time of writing, no ransomware groups have assumed responsibility for the attack at FBCS.