YMCA of Central Florida reports data breach affecting 12,000 people

The YMCA of Central Florida is reporting a significant data breach that occurred on May 20, 2024, affecting approximately 12,000 individuals, when an unauthorized third party attempted to infiltrate their computer network and access internal files.

The investigation into the breach concluded on May 31, 2024, followed by a supplemental investigation that uncovered additional information and concluded on September 26, 2024. The organization worked with independent IT security and forensic investigators to determine the full extent and scope of the breach, implementing additional safeguards and enhanced security measures in response to the incident. Exposed data types include:

• Names
• Social Security numbers
• Mailing addresses
• Driver's license numbers
• Dates of birth
• Financial account numbers
• Passport numbers
• Personal health information

The nature of the attack is not disclosed.

The organization began notifying affected members and former members on November 8, 2024. YMCA of Central Florida is offering affected individuals 12 months of complimentary Single Bureau Credit Monitoring services, including credit reports and credit scores.