John Thomas Data Breach Investigation
Strauss Borrelli PLLC, a leading data breach law firm, is investigating John Thomas, Inc. (“JTI”) regarding its recent data breach. The JTI data breach may have involved sensitive personal identifiable information belonging to an undetermined number of individuals.
ABOUT JOHN THOMAS, INC.:
JTI is a construction company based in Illinois. Founded in 1998, JTI specializes in the delivery of innovative traffic control and roadway safety solutions.2 Today, JTI designs and manufactures portable traffic signals, automated flagger assistance devices (AFADs) and other solutions that simplify temporary traffic control and make roadways safer.2 Headquartered in Dixon, Illinois, JTI has an additional location in Illinois and employs over 50 individuals.
WHAT HAPPENED?
Recently, JTI reported to the Attorney General of Montana that it had experienced a data breach in which the sensitive personal identifiable information in its systems may have been accessed. According to the breach notice, JTI recently discovered suspicious activity within its email environment. As a result, JTI launched an investigation to determine the nature of the incident.
Through its investigation, JTI learned that sensitive personal information in its systems may have been compromised by an unauthorized actor through employee email accounts between February 1, 2024, and April 1, 2024. As a result, JTI began a review of the data to determine what information had been impacted as well as identify the specific individuals affected. The exact type of personal information potentially exposed has not been made publicly available by JTI. However, according to state reporting guidelines, “personal information” can include the following types of information:
- Name
- Social Security number
- Driver’s license number, state identification card number, or tribal identification card number
- Account number or credit or debit card number, in combination with any required security code, access code, or password that would permit access to an individual’s financial account
- Medical record information
- Taxpayer identification number
- An identity protection personal identification number issued by the United States internal revenue service
As a result of the data breach, JTI began mailing data breach notification letters to impacted individuals. Based on the breach notice sent to Montana residents, JTI is providing affected individuals with a list of the specific type of sensitive information impacted and 12 months of complimentary identity monitoring services. A link to the form breach notification letters that JTI filed with the Attorney General of Montana is below.
If you received a breach notification letter from John Thomas, Inc.:
We would like to speak with you about your rights and potential legal remedies in response to this data breach. Please fill out the form, below, or contact us at 872.263.1100 or sam@straussborrelli.com.
