Colonial Pipeline, the largest fuel pipeline in the United States, is sending notification letters to individuals affected by the data breach resulting from the DarkSide ransomware attack that hit its network in May.
The company says that it “recently learned” that DarkSide operators were also able to collect and exfiltrate documents containing personal information of a total of 5,810 individuals during their attack.
Impacted personal info for the affected individuals ranges from names and contact details to health and ID information.
The affected records contained certain personal information, such as name, contact information, date of birth, government-issued ID (such as Social Security, military ID, tax ID, and driver’s license numbers), and health-related information (including health insurance information), Colonial Pipeline reveals in the data breach notification letters.
However, as the pipeline system’s CEO and President Joseph A. Blount, Jr. adds, not all of this information was stolen for each impacted individual.