About RiteCheck Cashing, Inc.
RiteCheck Cashing, Inc. is a financial service organization providing check cashing and personal finance services throughout New York City. The company recently faced a data breach that compromised personal information. The breach, affecting a total of 68,587 individuals, was submitted by Jason Schwent, an outside counsel from Clark Hill PLC. The incident was discovered on August 25, 2024, and involved an external system breach due to hacking.
What Happened
On or around August 25, 2024, RiteCheck identified unusual activity within its system. RiteCheck immediately implemented its incident response protocols and engaged independent forensic computer experts to assist in conducting an investigation. The investigation determined that an unauthorized user gained access to a RiteCheck server. The contents of the server were reviewed and it was discovered that personal information belonging to a subset of RiteCheck customers and employees was potentially impacted as a result of the incident.
The breach was identified on August 25, 2024, impacting both customers and employees of RiteCheck. Personal information such as names, addresses, and sensitive identification details were accessed without authorization.
Next Steps
Affected users are urged to remain vigilant for signs of identity theft or fraud. RiteCheck has taken steps to secure its systems, including changing user account passwords and deploying threat detection and endpoint monitoring tools. Individuals should monitor their financial accounts and credit reports for any unauthorized activity. Additionally, users are encouraged to follow any instructions provided in the notification letter sent by RiteCheck.
Identity Theft Protection Services
RiteCheck is offering 12 months of credit monitoring and identity protection services to impacted individuals through Cyberscout, a TransUnion company. This service includes monitoring for any unusual activity related to personal information. Affected individuals are encouraged to take advantage of these services to safeguard against potential identity theft. Details on how to enroll in these services were included in the notification sent to those impacted.