K&K Glass operates as Auto Glass Now, an auto windshield repair and replacement option that offers fast glass solutions to residential and business clients. They have locations in every state, with most states having more than one office. Their North Carolina branches may have upcoming struggles, with nearly 2,000 clients having their information stolen.
The cyberattack consisted of an unauthorized party accessing K&K’s internal systems. The threat actor presumably had limited access but captured employee and applicant data from a connected resource. They may have made this possible by using network vulnerabilities or code injection.
The consumer notice published on the Maine Attorney General’s website suggests the breach happened in July 2023. That same filing indicates the breach was discovered about two months later, around October 19th. Auto Glass Now purportedly sent notices to those impacted around November 21st.
AGN employees and job applicants may feel this breach the most. The notice suggests that those believed to have had impacted data invest in account monitoring services; however, temporary monitoring services are not enough to protect your data alone.
The Maine Attorney General’s breach filing lists around 2,000 impacted people, although the final number could be higher. AGN employees and those who have applied to work for them must take preventative actions to protect their information. Start securing your accounts with multi-factor authentications and strong passwords, then invest in monitoring services and suspicious activity alerts.