// UNCLASSIFIED // CLEARED FOR PUBLIC RELEASE //
FILE BRC-newsDTG 0600Z
ColdRecon / Breach Radar / Young Consulting
Breach Record

Young Consulting

DISCLOSED 2024-04-10 · RANSOMWARE · 950,000 RECORDS EXPOSED · RANSOMWARE

Young Consulting, an Atlanta-based software solutions provider, suffered a ransomware attack by the BlackSuit group on April 10, 2024. The breach exposed sensitive personal and health information of over 950,000 individuals, including Social Security numbers and insurance details. The company is notifying affected individuals and offering credit monitoring services.

The record

What we know

Disclosed
2024-04-10
Attack vector
Ransomware
Sector
software
Country
US
Records exposed
950,000
Domain
youngconsulting.com
Data classes exposed
full nameSocial Security numberdate of birthinsurance policy/claim information
RANSOMWARE ENDPOINT INVOLVED
ColdRecon assessment

Could a positive-security control have prevented this?

Verdict · would prevent · opinion

A positive-security model that blocks unauthorized encryption and exfiltration would likely have prevented the ransomware from executing its payload, as it would reject the unknown process behavior.

Our assessments are opinion, grounded in the cited public facts. Read them critically.

Sources

Cited reporting

Similar vector · recent

Other ransomware breaches on file

This page is the permanent ColdRecon entry for the Young Consulting disclosure. It updates if new public reporting emerges. All tracked breaches →

Young Consulting just lived through this. Your next prospect doesn't have to.

ColdRecon turns every disclosed breach into a daily intelligence brief from the seller's seat — normalized to the factors that move a deal, written in the Handler's voice. Request clearance and the first lands tomorrow at 0600.

Request Clearance →