Cyber Incident Victim: Innovative Service Technology Management Services
Date:
Jun 2022
Location:
United States of America
Summary
IST Management experienced a ransomware attack compromising sensitive consumer data, including names, birth dates, Social Security numbers, driver’s license and passport details, financial account information, and medical billing records. The breach occurred after unauthorized access to its systems, prompting the company to take affected systems offline and initiate an investigation. IST Management confirmed the scope of exposed information and notified impacted individuals via data breach letters, advising protective measures against identity theft. The Atlanta-based business services provider, employing over 2,500 personnel with substantial annual revenue, offers facilities management, litigation support, and digital forensics services.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 2 motives | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On June 3, 2022, an unauthorized party accessed the computer systems of Innovative Service Technology Management Services, Inc. (IST Management), a business services company headquartered in Atlanta, Georgia. The intrusion preceded a ransomware attack that compromised IST Management's network, though the specific method of initial access or ransomware variant was not disclosed in the company's filings. IST Management detected the security incident shortly after the attack commenced, prompting immediate containment measures that included taking affected systems offline. The company initiated a forensic investigation to determine the scope of the compromise and identify potentially exposed consumer data. Investigators confirmed that threat actors accessed files containing sensitive personal information belonging to an unspecified number of individuals during the June intrusion. The investigation concluded that the compromised data included full names, dates of birth, Social Security numbers, driver's license numbers, passport numbers, financial account details, and medical billing information, though the exact volume of affected records was not publicly reported.
IST Management completed its review of impacted files on October 17, 2022, establishing which individuals required notification based on the 41-day investigative timeline following system access. On November 16, 2022, the company submitted a data breach notification to the Montana Attorney General's office and dispatched individualized breach letters to all affected consumers. These notifications outlined the categories of exposed information but did not disclose whether the company paid a ransom or whether data was exfiltrated beyond the encryption-based attack. The breach exposed multiple high-sensitivity data types capable of facilitating identity theft and financial fraud, with medical billing information introducing potential health privacy concerns. IST Management, which employs over 2,500 staff and generates $326 million in annual revenue through facilities management, litigation support, and digital forensics services, did not report operational disruptions or system downtime durations resulting from the incident containment measures. No additional attack vectors, subsequent breaches, or law enforcement actions were referenced in the available disclosure.