Cyber Incident Victim: Riverbay Corporation
Date:
Apr 2025
Location:
United States of America
Summary
Riverbay Corporationrecently identified unusual activity in its IT network, promptly isolated the affected systems, and launched an investigation with a third‑party cybersecurity firm and law enforcement. The investigation determined that an unauthorized party accessed the network and may have acquired files containing names, Social Security numbers, and bank account information of shareholders, applicants, employees, and possibly residents. Notification was sent to those potentially affected and complimentary credit monitoring services were offered.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 2 techniques |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On May 21, 2025, Riverbay Corporation identified unusual activity within its information technology network. Upon detection, the company immediately isolated and secured the affected systems to prevent further unauthorized access. Riverbay then engaged a third‑party cybersecurity firm to assist with an investigation and simultaneously notified law enforcement authorities. The initial response aimed to contain the incident while preserving evidence for forensic analysis.
Through the investigation, Riverbay determined that an unauthorized party had gained access to its IT network and systems between April 21, 2025 and May 21, 2025. On June 2, 2025, the company concluded that the intruder had accessed and/or acquired files from certain computer systems. The investigation could not exclude the possibility that the accessed files contained information relating to Co‑op City shareholders and applicants, as well as current and former Riverbay employees. Additionally, if residents of Co‑op City had their information provided to Riverbay by a shareholder with whom they reside, their data might also have been involved. The types of data potentially exposed include names, Social Security numbers, and bank account and routing numbers.
On June 20, 2025, Riverbay began notifying individuals whose information may have been involved in the incident. As part of the response, the organization offered complimentary memberships to credit monitoring services for those potentially affected. Riverbay also established a dedicated toll‑free incident response line at 1-866-461-1672, which operates Monday through Friday from 9:00 a.m. to 6:30 p.m. Eastern Time, excluding major U.S. holidays, to address questions about the event.
To reduce the likelihood of a similar occurrence, Riverbay reported that it has implemented additional security measures to strengthen the protection of its network. Furthermore, the company is providing additional training for employees focused on data security practices. These actions constitute the post‑incident steps taken by Riverbay following the identified breach.