Business Council of New York State says nearly 50,000 had data leaked in February cyberattack

A cyberattack on the Business Council of New York State gave hackers access to sensitive information on more than 47,000 people. 

The business advocacy organization told regulators in multiple states that it suffered a cyberattack in February.

An investigation was completed on August 4 and revealed that 47,329 people had some combination of information leaked that includes names, Social Security numbers, state ID numbers, financial account and routing numbers, payment card numbers, PINs as well as expiration dates, taxpayer identification numbers and electronic signature information. 

Some people also had significant medical data released, including information on diagnoses, prescriptions, treatments, procedures and health insurance. 

The Business Council of New York State works with more than 3,000 organizations across the state including large companies like IBM and Kodak as well as small businesses — with members employing more than 1.2 million people. 

The organization says it lobbies for business interests in the state legislature and promotes economic development. Many members also use the group insurance program offered by the organization.