- California Cryobank confirmed that he suffers a data violation in 2024
- Social security numbers, driver’s license numbers and more were stolen
- The company is offering credit monitoring services to some customers.
One of the largest sperm banks in the United States has suffered a cyber attack in which it lost confidential data of customers.
California Cryobank confirmed the news in a presentation before the office of the MAINE attorney general, as well as in a letter of data violation that is sent to the affected people.
In the notification letter, the company said it detected suspicious activities on its network on April 21, 2024, and isolated potentially affected devices of the network.
What about donor identifications?
“Through our research, CCB determined that an unauthorized part obtained access to our environment and may have accessed and/or acquiring files held in certain computer systems between April 20, 2024 and April 22, 2024,” says the letter.
California Cryobank is a sperm and egg bank that provides reproductive services, which include sperm donation, freezing of eggs and genetic detection. It is among the largest sperm banks in the United States, which offers a wide range of donors and services, and operate in the 50 states and more than two dozen countries worldwide.
A more exhaustive investigation, which lasted almost a year, CCB concluded that different personal data for customers, such names, bank accounts and routing numbers, social security numbers, driver’s license numbers, payment card numbers and/or health insurance information were exposed. He didn’t say how many people were affected.
It is not clear if donor’s information, such as donor’s identification numbers, was also stolen in the attack. When a person donates sperm, an identification number is assigned, and his identity remains hidden until the child turns 18 and decides to learn more about his biological father. Leak identification numbers could be a great concern for privacy.
The company has offered a year of credit monitoring to people whose social security numbers and driver’s license numbers were exposed in the attack.
Through Bleepingcomputer
