About The New Jersey Society of Certified Public Accountants
The New Jersey Society of Certified Public Accountants (NJCPA) is a professional organization of CPAs based in New Jersey. They experienced a data breach on February 17, 2025, affecting 2,670 individuals, including two Maine residents. This breach involved unauthorized access to their network, compromising sensitive personal information. The NJCPA takes the security of its members’ data seriously and has implemented measures to prevent future occurrences.
What Happened
On February 17, 2025, the NJCPA was made aware of unusual activity when a unauthorized party attempted to access the NJCPA’s network without authorization. Upon discovery of this Incident, the NJCPA immediately worked with their IT to secure its systems and begin an internal review of the incident. Furthermore, the NJCPA promptly engaged a specialized third-party cybersecurity firm to conduct a comprehensive investigation to determine the nature and scope of the incident. The forensic investigation determined that the unauthorized party may have accessed personally identifiable information (“PII”) without authorization.
The breach occurred on February 17, 2025, when an unauthorized party accessed the NJCPA’s network, affecting 2,670 individuals. Personal information may have been accessed without authorization.
Next Steps
Affected users are encouraged to remain vigilant against identity theft and fraud by reviewing their account statements and monitoring credit reports for suspicious activity. Additionally, contacting financial institutions and major credit bureaus to inform them of the breach is recommended. Users should consider placing a fraud alert on their credit files and follow any steps provided in the notification letters to protect their interests.
Identity Theft Protection Services
The NJCPA offers 12 months of complimentary identity monitoring services through Kroll, including credit monitoring, fraud consultation, and identity theft restoration. Impacted individuals are encouraged to activate these services by following the enrollment instructions in their notification letters. The NJCPA covers the cost, but users must complete the activation process within 90 days to take advantage of these protections.