CLEAResult reports MOVEit related data breach
Learn More
On August 23, 2023, CLEAResult, a Texas based C business services company with a distinct focus on energy management reported a significant data breach pertaining to confidential consumer data that had been entrusted to the company.
The root cause behind the CLEAResult breach seems to have centered around data collected and maintained by CLEAResult in their capacity as an administrator. Per the reporting the breach did not directly impact CLEAResult's internal computer systems, which indicates a third-party breach.
Although CLEAResult did not provide any detail about the breached third party, there is a separate data breach report by National Grid naming CLEAResult as the third party causing the breach with the file transfer service that they were using. This leads to a conclusion of the data breach being caused by the MOVEit of GoAnywhere vulnerability, with the highest probability being MOVEit.
While the compromised information can vary from one individual to another, it typically includes personal identifiers such as
- names,
- Social Security numbers,
- financial account numbers.
There are no details about the number of impacted individuals.
On August 23, 2023, CLEAResult initiated the process of notifying individuals who had been affected by this recent data security incident.
