SundaySky, Inc.

Your Personal Info Could Be

Exposed Online After

This Hospital Breach

Breach Description

SundaySky, Inc., a New York-based software company specializing in video experience platforms, experienced a significant data breach that was publicly disclosed in March 2023. The breach involved unauthorized access to the company’s U.S. cloud-based servers, leading to the exfiltration of confidential consumer information. This incident affected 37,095 consumers, compromising data such as first names, personal email addresses, and details related to Healthcare Savings Accounts (HSAs).
The breach was detected on January 8, 2023, prompting SundaySky to secure its systems, notify law enforcement, and initiate an investigation. The unauthorized access occurred between January 6 and January 8, 2023, during which the attackers were able to copy certain files containing sensitive consumer information. In response to the breach, SundaySky began reviewing the affected files to ascertain the extent of the information compromised and the consumers impacted. Subsequently, on March 7, 2023, the company issued data breach notification letters to all individuals whose information was compromised as a result of the security incident.
SundaySky, founded in 2007, is known for providing a Video Experience Platform that aids businesses in enhancing revenue, reducing costs, and improving customer satisfaction through personalized video content. The company, which employs over 160 people and generates approximately $33 million in annual revenue, has offices in New York City, Tel Aviv, and Tokyo.

Breach Submission Date Mar 07, 2023
Converted Entity Name SundaySky, Inc.
Converted Entity Type Business Associate
State NY
Individuals Affected 37,095
Breach Type Hacking/IT Incident

Breach Information Location Network Server

Business Associate Present Yes