CGM reports data breach of Affordable Connectivity and Lifeline Program users
Learn More
CGM, Inc., a digital consulting and software firm based in Roswell, Georgia, has reported a data breach following the discovery of unauthorized access to confidential consumer information.
CGM specializes in providing software-as-a-service (SaaS) solutions to wireless and broadband companies engaged in the federal Affordable Connectivity Program and Lifeline Program. These services include verifying subscriber eligibility, enrolling low-income households, monitoring agent and distribution activities, managing federal and state reimbursement filings, and supporting audits
The incident was discovered after CGM detected unusual activity on its network on December 28, 2022, prompting an incident response and investigation with external data security experts. The unauthorized access period was active between December 15, 2022, and December 28, 2022, during which the intruder had access to files containing confidential consumer information.
The breach has caused potential exposure of sensitive data including:
- names,
- Social Security numbers,
- financial account details,
- health insurance information,
- addresses,
- dates of birth,
- driver's license numbers.
The exact cause of the CGM data breach is still under investigation, and no details are disclosed about the number of affected individuals.
