Data Breach Alert: Aditi Consulting | Console and Associates, PC


Recently, technology consulting firm Aditi Consulting announced a data breach resulting from what the company called a “security event.” Details on the breach are yet to come; however, Aditi Consulting confirmed that the breach followed a “sophisticated cyberattack”. Following this data breach, the names and social security numbers of more than 5,000 current and former employees and consultants have been compromised.

Given the recency of this breach, little is known about what caused it and whether anything could have been done to prevent it. However, data breaches such as this can happen in different ways. In many cases, data breaches are the result of a hacker breaking into an organization’s network in an attempt to access or even obtain sensitive consumer information. Although it is unclear why Aditi Consulting was the target of this recent cyberattack, it is common for hackers to target companies with weak data security systems.

Once an unauthorized party gains access to a company’s network, they can delete any consumer information located on the network. However, due to technological limitations, most companies cannot identify exactly what information the parties accessed or if the hacker deleted any of the accessed data. All a company can tell consumers is that their information has been accessed by an unauthorized party. Either way, those whose information is compromised in a data breach are at a much higher risk of identity theft. Given these risks, it is important for those who have received a data breach letter from Aditi Consulting to take appropriate action to protect themselves and assert their rights as consumers.

Individuals receiving a data breach letter from Aditi Consulting should be aware of the data breach risks present and take steps to limit the ability of others to steal their identity. Of course, the fact that your data was among those accessible does not necessarily mean that the unauthorized party will impersonate you or use it for other criminal purposes. However, that is often exactly their intention. This is especially the case since the onset of the COVID-19 pandemic, which presented many hackers with an opportunity to take advantage of companies as they dealt with a host of other issues unrelated to cybersecurity.

However, companies like Aditi Consulting have a duty to protect consumer data, regardless of the surrounding circumstances. If it appears that your sensitive information was mishandled prior to the breach, you may be entitled to financial compensation through a data breach lawsuit.

Are consumers affected by the Aditi Consulting data breach entitled to financial compensation?

When you decided to work with Aditi Consulting, you provided the company with your personal information and you trusted the security of your information. Surely anyone in your position would have done the same. However, news of this data breach raises concerning questions about the adequacy of the company’s data security measures.

All companies have an ethical and legal obligation to ensure that sensitive employee information in their possession remains private. And, while developing and maintaining an effective data security system is tedious, it is a necessary cost of doing business in an environment where the threat of cyberattacks is constant.

US data breach laws allow consumers to hold companies liable for the misuse or careless handling of their data. However, these laws are very complex and news of Aditi Consulting’s data breach is still fresh. Thus, for now, there is no evidence yet indicating that Aditi Consulting bears the responsibility for the cyberattack. However, this could change, as our data breach lawyers review the violation to determine what legal remedies consumers may have against the business.

If you have questions about your ability to bring a data breach class action lawsuit against Aditi Consulting, you should contact a data breach attorney as soon as possible.

What to do if you received a data breach notification from Aditi Consulting

If Aditi Consulting sent you a data breach letter, it means that you were among those whose personal data was accessible during the recent data breach. This means that a complete stranger, possibly a criminal, may have accessed, viewed and stolen your information. While no one can know for sure why a hacker would want your information or what they wanted to do with it, the situation certainly warrants some caution on your part. Given the risks involved, it is essential that you remain vigilant to protect yourself from the increased risk of identity theft by taking the following measures:

  • Carefully read the data breach letter sent by Aditi Consulting to determine what information was accessible;
  • Make a copy of the letter for your records;
  • Sign up for the free credit monitoring service provided by Aditi Consulting;
  • Change all your online passwords and security questions;
  • Enable two-factor or multi-factor authentication, where available;
  • Regularly review your credit card and bank account statements for any signs of suspicious activity;
  • Monitor your credit report for any unexpected changes that could be a sign of identity theft;
  • Contact one of the major credit bureaus to ask them to add a fraud alert to your profile; and
  • Notify your banks and credit card companies of the data breach.

About Aditi Consulting

Aditi Consulting is a technology solutions company that provides project solutions, as well as “Talent on Demand” services. The company’s Talent on Demand service connects companies with qualified candidates and manages much of the interview and selection process. Through this and other services it provides, Aditi Consulting aims to help its client companies accelerate their growth by meeting their unique people and technology needs. Aditi Consulting has more than 60 Fortune 500 clients and operates in all 50 states. The company has over 700 consultants and has worked on over 300 projects to date.

Aditi Consulting Consumer Data Breach Details

According to the latest documents filed by Aditi Consulting, on December 14, 2021, the company noticed suspicious activity on some of its computer systems. Aditi Consulting investigated the activity, confirming that the company’s network had been the subject of a “sophisticated cyberattack”. As a result of the breach, the names and Social Security numbers of 5,216 current and former employees and consultants were accessible to the unauthorized party on December 9, 2021.

Subsequently, Aditi Consulting began sending written notice of the breach to all affected parties. In these letters, the company describes what happened and outlines some steps that employees and consultants can take to protect themselves. Although Aditi Consulting cannot confirm that any of the compromised information was used by the unauthorized party, the company encourages those who have received a data breach letter to watch for any signs of identity theft, fraud or any other unauthorized activity.

Below is a copy of the initial data breach letter issued by Aditi Consulting (an example of the actual notice sent to consumers can be found here):

Dear [Consumer],

Aditi Consulting (“Aditi”) is writing to inform you of an incident that may affect the security of some of your information. We provide you with an overview of the incident, our response, and steps you can take to better protect yourself, if you wish.

What happened? On December 14, 2021, Aditi identified suspicious activity related to certain computer systems and then discovered that our network was the target of a sophisticated cyberattack. We acted quickly to secure the network and launched an investigation with the help of third-party IT specialists to identify what happened and confirm what information may have been involved. Although our investigation is ongoing, to date we have determined that certain documents containing information relating to current and former employees and/or consultants, including you, were removed from our network by an unauthorized actor on or around December 9, 2021.

What information was involved? Relevant information includes your name and social security number.

what are we doing? Following this incident, we took immediate action to secure our environment and strengthen our security posture going forward. To help protect you against potential misuse of your information, we offer free credit monitoring services through Experian for one (1) year and encourage you to sign up for these services. If you would like to sign up for free credit monitoring services, please follow the instructions below. Please note that you will need to register for the Services if you wish, as we are unable to register on your behalf.

What can you do. We encourage you to review the attached steps you can take to help protect your information for additional guidance on what you can do to better protect yourself against the possibility of identity theft and fraud, if you believe that it is appropriate to do so. You can also activate the free credit and identity monitoring services we offer.

For more information. We understand that you may have questions about this incident that are not addressed in this letter. If you have additional questions, please call our dedicated support line at (866) 579-4428. Please be prepared to provide assignment number B023601 when calling.

We sincerely regret any inconvenience or concern this incident has caused.


Comments are closed.