Corebridge Financial, Lawrence General Retirement Plan Administrator, Cybersecurity Incident

STATEMENT BY LAWRENCE GENERAL HOSPITAL – July 11, 2023
Corebridge Financial, Lawrence General Hospital’s Retirement Plan Administrator, Cybersecurity Incident
 
PBI Research Services (PBI) will be handling the IT Security incident as a regulatory compliance service for Corebridge Financial, who is the retirement plan administrator for Lawrence General Hospital employees. On June 28, 2023, we became aware the Corebridge Financial had a third-party vendor security incident by “MOVEit” file transfer vulnerability that impacted thousands of organizations nationally on June 16, 2023. The vendor has provided assurances to Corebridge Financial that the “MOVEit vulnerability” has been remediated.
PBI will be sending out notification letters to all LGH retirement plan participants this week to further explain the details of the breach and offer a credit monitoring service through Kroll.   The evidence to date now shows the affected data to include personal information including names, addresses, dates of birth, Social Security numbers and policy/account numbers, as well as certain beneficiary personal information, such as names, addresses and dates of birth.
The Official notification letters will be set out to impacted individuals directly from PBI for confidentiality reasons.

MORE INFORMATION:
To learn more about steps affected individuals can take to protect their information, and to learn more about this Corebridge Financial incident please view the Notice at www.corebridgefinancial.com/vendor-incident

---
STATEMENT BY LAWRENCE GENERAL HOSPITAL - JUNE 29, 2023
Corebridge Financial, Lawrence General Hospital’s Retirement Plan Administrator, Cybersecurity Incident 

Corebridge Financial is the retirement plan administrator for Lawrence General Hospital employees. On June 28, 2023, we became aware the Corebridge Financial had a third-party vendor security incident by “MOVEit” file transfer vulnerability that impacted thousands of organizations nationally on June 16, 2023. The vendor has provided assurances to Corebridge Financial that the “MOVEit vulnerability” has been remediated.

Corebridge Financial is currently working to investigate the scope of the impacted customer data and will be planning to offer credit monitoring and identity protection services in the near future. The initial data impact appears to include personal information including names, addresses, dates of birth, Social Security numbers and policy numbers. Official notification letters will be set out to impacted individuals directly from Corebridge Financial for confidentiality reasons.