Cyber Incident Victim: Walters McCann Fanska

In late February 2015, Walters McCann Fanska, a Kansas City-based accounting firm, detected suspicious activity involving client accounts on its network. The firm promptly engaged a forensic investigator to examine the incident. On March 4, 2015, the investigation confirmed unauthorized access to the firm’s network systems, with the compromise period extending from late 2014 through late February 2015. While forensic analysis could not confirm whether hackers actually accessed or exfiltrated specific client data during this intrusion window, the firm determined that attackers potentially acquired personal and financial account information belonging to clients. The breach timeline indicated continuous network access by threat actors for approximately three months before detection.

Walters McCann Fanska initiated client notifications following the forensic confirmation, disclosing the possibility of data exposure despite lacking definitive evidence of information misuse. The firm referenced observable suspicious account activity in its disclosure but did not specify the number of affected individuals or clients. As a remedial measure, the accounting practice offered impacted clients two years of credit monitoring and identity protection services through Experian. Notification letters were filed with the Vermont Attorney General’s office, though the firm’s client base geographic scope remained unspecified in available documentation. No operational disruptions or system downtime were reported in conjunction with the security incident.