Cyber Incident Victim: GEE Group
Date:
Oct 2022
Location:
United States of America
Summary
GEE Group, a staffing company operating multiple brands in professional recruitment services, experienced a data breach involving unauthorized access to its computer systems, resulting in the encryption and potential compromise of sensitive consumer information. The incident, identified as a likely ransomware attack, exposed personal details including names, addresses, birthdates, and Social Security numbers. The organization terminated the unauthorized access, engaged law enforcement and cybersecurity experts to investigate, and subsequently notified affected individuals about the exposure of their data to potential identity theft risks.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On October 7, 2022, GEE Group, Inc., a staffing company based in Jacksonville, Florida, filed a notice with the Vermont Attorney General disclosing a data breach involving unauthorized access to its computer systems. The company detected the incident after discovering that sensitive data stored on its servers had been encrypted, indicating a ransomware attack. GEE Group immediately eliminated all unauthorized access to its systems, contacted law enforcement agencies, and engaged an external cybersecurity firm to investigate the scope and cause of the breach. The investigation confirmed that an unauthorized actor had infiltrated the company's systems and accessed files containing personal consumer information. While the exact timeline of the intrusion was not specified, the company initiated a review of affected files to identify compromised data and impacted individuals following the containment of the breach.
The compromised information included names, addresses, dates of birth, and Social Security numbers, with the specific data elements varying by individual. GEE Group completed its review and mailed data breach notification letters to all affected parties on October 7, 2022, advising them of the exposure and potential identity theft risks. The company’s breach notification suggested the incident was a ransomware attack, implying that stolen data could appear on the dark web if ransom demands were unmet. With over 271 employees and $162 million in annual revenue, GEE Group operates multiple staffing brands including General Employment, Accounting Now®, and Scribe Solutions, handling sensitive personal data across its professional staffing and healthcare scribing divisions. The breach exposed vulnerabilities in the company’s data security infrastructure, though no specific technical details about the attack vector or duration of unauthorized access were disclosed. Law enforcement involvement and the cybersecurity firm’s investigation remained ongoing at the time of the notification, with no public confirmation of whether data was exfiltrated or used maliciously.