In late May 2023, First Bankers Trust Company experienced a significant security incident involving MOVEit Transfer, a Managed File Transfer (MFT) software by Progress Software. This software is widely used for secure file transfers across numerous organizations globally. The breach was identified due to vulnerabilities in the MOVEit Transfer system, which were exploited by unauthorized actors.
Between May 27 and May 31, 2023, before the software vulnerabilities were publicly disclosed by Progress Software, unauthorized individuals accessed and obtained files transferred via MOVEit Transfer. The breach was discovered and reported promptly after the initial detection of suspicious activity.
The specific types of consumer information exposed specifically relating to First Bankers Trust were not disclosed in the public attorney general disclosure. However, other victims in the MOVEit Transfer breach had their name, Social Security number, date of birth, driver's license/state identification number, and taxpayer identification number exposed.
Upon discovering the breach, First Bankers Trust Company acted swiftly to mitigate the effects of the breach and prevent further unauthorized access. The company launched a comprehensive investigation to understand the scope and impact of the breach. They also notified necessary regulatory bodies as required by law.
Technical vulnerabilities were addressed by patching the MOVEit software according to the provider's guidelines. Additionally, the service provider deployed a technical response team to secure the systems and ensure that no further vulnerabilities remained.
To support affected individuals, First Bankers Trust Company has partnered with Kroll, a global leader in risk mitigation, to offer two years of complimentary identity monitoring services. These services include Credit Monitoring, Fraud Consultation, and Identity Theft Restoration.
Given the nature of the data breach, it is crucial for affected individuals to remain vigilant and proactive in monitoring their personal information. Here are recommended actions:
A breach notice means your personal details could be circulating far beyond the organization involved. One practical step is continuous monitoring: services such as Identity Defender (included with an ExpressVPN subscription) can automatically check dark-web markets, flag new credit-file activity, and request removal of your information from data-broker sites.
This kind of “early-warning system” can’t undo a breach, but it can help you spot misuse quickly and limit further exposure. ExpressVPN is offering 61% off, risk-free for 30 days, with ID Theft Insurance included and no extra cost for those who sign up for one or two years.