Cyber Incident Victim: The Credit Pros

On or about June 16, 2026, The Credit Pros learned that a security incident had occurred within its Salesforce environment. The company became aware of the breach after the threat actor identifying themselves as Icarus publicly claimed responsibility for the intrusion. According to the actor's claim, unauthorized access was gained to systems containing employee records, customer data, and confidential business information. The disclosure indicated that the compromised data could include names, mailing addresses, telephone numbers, email addresses, dates of birth, credit and debit card numbers, Social Security numbers, and bank account details. The statement from The Credit Pros noted that the breach may have exposed this information, though the exact scope remained under review at the time of the announcement. Individuals who received a breach notification from The Credit Pros were advised that they might face an elevated risk of identity theft and fraudulent activity. The announcement did not specify the number of records affected or the precise duration of the unauthorized access. The threat actor's claim was the primary public attribution of the incident at that point in time. No further technical details about the method of intrusion or the specific vulnerabilities exploited were provided in the release. The timeline placed the discovery of the breach just one day before the public notice issued on June 17, 2026.

Edelson Lechtzin LLP, a national class action law firm with offices in Pennsylvania and California, announced that it was investigating data privacy claims arising from the Credit Pros cybersecurity incident. The firm stated that it was offering free case evaluations to individuals who believed their personal information had been compromised in the breach. Edelson Lechtzin LLP indicated that it would assess potential legal claims and pursue remedies on behalf of affected consumers without charging upfront fees. The firm's investigation aimed to determine whether a class action lawsuit could be filed to address the alleged exposure of sensitive data. The Credit Pros is described as a fintech company that provides credit repair, credit monitoring, and financial management services to its clientele. Edelson Lechtzin LLP handles a variety of litigation areas including data breach claims, securities and investment fraud, federal antitrust violations, ERISA employee benefit plans, wage theft, and consumer fraud matters. Contact information for the law firm was provided, including a mailing address in Newtown, Pennsylvania, a telephone number, an email address, and a website URL for those seeking a free consultation. The press release concluded with a note that the communication could be considered attorney advertising in certain jurisdictions.