Notice of Carrier Data Breach

What happened?

On Sunday, February 23, 2020, we confirmed a data breach of our IT systems which compromised the security of our online portals for carriers. We know the hackers gained access to information in some of our carrier accounts, including, in many instances, tax ID numbers and bank account numbers.

Our systems have been thoroughly vetted, and any vulnerabilities that were attacked have been repaired. Our systems were put through vigorous penetration testing by our IT teams, and we continue to work with an expert cyber security firm to ensure there are no additional vulnerabilities.

What information was involved?

Hackers gained access to information in some of our carrier accounts, including, in many instances, tax ID numbers and bank account numbers.

What is TQL doing?

Our systems have been thoroughly vetted, and any vulnerabilities that were attacked have been repaired. Our systems were put through vigorous penetration testing by our IT teams, and we continue to work with an expert cyber security firm to ensure there are no additional vulnerabilities. We're also actively working with law enforcement to investigate this breach.

Is law enforcement involved?

The FBI has been notified and we are working with TQL’s internal fraud and theft prevention teams as well as a 3^rd party expert fraud and theft team to investigate.

What is TQL doing in response to this hack to prevent another issue?

Our systems have been thoroughly vetted, and any vulnerabilities that were attacked have been repaired. Our systems were put through vigorous penetration testing by our IT teams, and we continue to work with an expert cyber security firm to ensure there are no additional vulnerabilities. We're also actively working with law enforcement to investigate this breach.

Was my information compromised?

If you have been notified via email, at least some of your information has been compromised. If you are concerned we don’t have a valid email address on file for you, please contact our hotline at 800-822-5980 or email CarrierHotline@tql.com.

The ACH payment theft attempts were stopped quickly. As of today, there have been less than 20 carriers identified where ACH payment theft may have occurred. They are being contacted and their account will be updated to reflect any unpaid invoices. We are asking all carriers to assume their bank account and tax ID information was at risk at some point and take additional steps as a precaution.

What can I do to help protect myself now?

1. We are recommending you contact your bank or financial institution your TQL account is with and notify them your information may have been compromised, specifically your bank account, routing, and tax ID Numbers.
2. We also recommend that you place a fraud alert on your credit file. A fraud alert tells creditors to contact you before they open any new accounts or change your existing accounts. Call any one of the three major credit bureaus. As soon as one credit bureau confirms your fraud alert, the others are notified to place fraud alerts. The initial fraud alert stays on your credit report for one year.  You can renew it after one year.

• Equifax: www.equifax.com or 1-800-685-1111
• Experian: www.experian.com or 1-888-397-3742
• TransUnion: www.transunion.com or 1-888-909-8872

You also may want to consider contacting the major credit bureaus at the telephone numbers above to place a free credit freeze on your credit file.  A credit freeze means potential creditors cannot get your credit report.  That makes it less likely that an identify thief can open new accounts in your name. 

If you have additional concerns, you can visit the FTC's website at IdentityTheft.gov. 

If I want to change my ACH information you have on file, how do I do that?

Request a new ACH form from TQL, fill it out and return it to the email or fax number on the form and we will update your information in our system after contacting you to verify.