finsmart-news_admin 
A law firm is warning tens of thousands of people that their personal information may have been exposed in a cybersecurity breach.
According to a notice filed with the Attorney General of Maine, 54,712 individuals are impacted after an “unauthorized party” gained access to the Davies, McFarland & Carroll LLC’s (DMC) systems, prompting a months-long investigation to determine the scope of the breach.
The Denver-based firm says the intrusion was first detected on July 16th, 2024, when unusual activity was observed within the network.
After completing a forensic review, investigators confirmed that files stored on the compromised systems may include people’s names, addresses, dates of birth, Social Security numbers, medical treatments or histories and health insurance information.
The firm says that while there is no confirmation that the stolen data has been misused, the types of information accessed are classified as highly sensitive because they can be exploited for identity theft, financial fraud, or the unauthorized use of medical services.
A more detailed statement posted by DMC outlines the nature of the breach and the steps taken since the incident. The document confirms that certain files containing protected health information were among those accessed, triggering federal and state reporting requirements under HIPAA. After determining which individuals were affected, the firm began issuing formal written notices and offering complimentary credit monitoring and identity protection services.
The firm’s notice states that at this time, there is no evidence the accessed information has been publicly released or used in ongoing fraud schemes, but acknowledges that the possibility cannot be ruled out.
The investigation remains ongoing, and the firm says anyone who believes they may have been affected but has not yet received a notification should contact its designated response line for further information.
