Cyber Incident Victim: Optima Tax Relief

In November 2022, Optima Tax Relief, LLC detected a cyberattack impacting its computer network. The Santa Ana-based tax resolution services provider immediately secured its systems and engaged an external IT firm to investigate the incident. Forensic analysis confirmed unauthorized access to files containing sensitive consumer information. The compromised data included names, mailing addresses, dates of birth, and Social Security numbers—critical identifiers exposing affected individuals to potential identity theft and financial fraud. Optima conducted a comprehensive review of accessed files to identify impacted customers and determine the specific data elements exposed per individual. The company completed this assessment several months after the initial intrusion discovery, verifying the scope of compromised records.

On May 2, 2023, Optima formally reported the breach to the Montana Attorney General’s office and initiated notification letters to affected customers. The six-month gap between intrusion detection and public disclosure reflects the duration required for investigation and victim identification processes. As a firm specializing in IRS negotiations and tax debt resolution, Optima routinely handles highly sensitive financial data across its 711-employee operation. The breach exposed systemic vulnerabilities in protecting client information, though specific technical details about attack vectors or network security shortcomings remain undisclosed. No ransomware payments or data deletion claims were reported, suggesting a conventional data exfiltration incident rather than extortion-focused ransomware. The company’s $93 million annual revenue and national client base indicate substantial operational scale, amplifying potential liability risks from the exposure of taxpayer information entrusted for resolution services.