FAQs for NetGain Ransomware Incident
In November 2020, Netgain Technology, LLC (“Netgain”), a third-party provider based in St. Cloud, MN that offers computer services to organizations like The Todd Organization, reported that it experienced a ransomware incident that resulted in encryption of certain Netgain systems. Netgain reported the incident to law enforcement and worked with forensic investigators to investigate. Following its investigation, Netgain notified its customers that an unknown actor may have accessed or acquired certain Netgain customer data. Upon learning that Todd files were potentially impacted on December 16, 2020, we worked diligently to determine what information was impacted, which involved an extensive investigation, collaboration with Netgain, and a manual review of data files. Upon learning that The Todd Organization files were potentially impacted, we worked diligently to determine what information was impacted, which involved an extensive investigation, collaboration with Netgain, and a manual review of data files. On June 1, 2021, we concluded our review of the files and determined that impacted file(s) contained your personal information.
We are not aware of any actual or attempted misuse of personal information as a result of this incident, but we are providing notice to you to help minimize any potential disruption due to this attack on the Netgain systems.
If you received a notification letter, you can redeem the Experian credit monitoring offer by using the code included in your notice letter.
If an individual does not receive direct communication from The Todd Organization, we do not believe that person is impacted by this incident.
Information impacted in the Netgain security incident varied by individual, but may have included names, insurance policy number(s), contact information, social security numbers, driver’s license numbers, financial information, and health information used for underwriting insurance coverage.
Netgain Technology, LLC, is a cloud-based information technology (IT) provider based in St. Cloud, MN, delivering cloud-based hosting and managed services to healthcare, financial services, and other industries nationwide. The Todd Organization used these services. Like many other Netgain clients in the financial services and other industries, The Todd Organization relied on Netgain for secure document storage and other specialized IT services.
Netgain Technology, LLC, is a cloud-based IT provider based in St. Cloud, MN, delivering cloud-based hosting and managed services to healthcare, financial services, and other industries nationwide. Like many other Netgain clients in the financial services industry, The Todd Organization relied on Netgain for secure document storage and other specialized IT services. We understand that the ransomware attack impacted numerous Netgain clients’ data. We also understand that Netgain has worked with forensic experts to contain the incident and resecure their systems and services.
Upon learning that The Todd Organization files were potentially impacted by the Netgain incident, we immediately took steps to determine what information was impacted, which involved an extensive investigation, extended coordination with Netgain, and manual review of a large volume of files to identify what information was impacted.
We understand that Netgain has worked with forensic experts to contain the incident and resecure their systems and services.
We take this incident and the security of personal information in our care very seriously. Upon becoming aware of the Netgain security incident, we worked diligently to investigate. This involved an extensive investigation, extended coordination with Netgain, and manual review of a large volume of files to identify what information was impacted. While we are unaware of any actual or attempted misuse of personal information as a result of this incident, as a precautionary measure, we are providing notice of this incident so that you may take further steps to protect your personal information should you feel it is appropriate to do so. To help protect your identity, we are offering complimentary access to Experian IdentityWorksSM for 24 months. If you do not receive direct communication from the Todd Organization, we do not believe you to be impacted by this incident.
We have no indication that your debit or credit card number was impacted and have no indications of fraud as a result of the Netgain security incident at this time. Nevertheless, it is always a good idea to monitor your accounts and report any suspicious activity immediately to your financial institution.
We understand that the ransomware attack on Netgain impacted numerous Netgain clients’ data.
If an individual does not receive direct communication from The Todd Organization, we do not believe that person is impacted by this incident.
We understand that Netgain notified federal law enforcement of the ransomware incident.
We have not been notified that law enforcement has identified or made an arrest in connection with the Netgain ransomware incident; unfortunately do not have any further information on the status of the law enforcement investigation at this time.
Netgain Technology, LLC, is a cloud IT provider based in St. Cloud, MN, delivering cloud hosting and managed services to healthcare, financial services, and other industries nationwide. The Todd Organization is a group of independent consultants that assists corporate employers and financial institutions in designing, administering, and informally funding non-qualified executive benefit plans. The Todd Organization assists its clients in informally funding their plans using corporate-owned life insurance, bank owned life insurance, mutual funds, and alternative strategies. Like many other Netgain clients in the financial services industry, The Todd Organization relied on Netgain for secure document storage and other specialized IT services.
We have a webpage available on The Todd Organization website with information about the Netgain security incident, and if there are any material updates on the incident, we would post updates there.