On January 13, 2023 Asbury identified a malicious file on our CRM server file system after being notified by the CRM software provider of a potential vulnerability on the platform. Asbury, working with our consultants, immediately removed the malicious file and installed corrective patches the same day.  Investigation into the malicious file indicates that the file was placed in advance of a potential malware attack but the file was identified and removed before an attack occurred.  We have identified no evidence of any data having been transferred out of the secured server environment at this time.

Regards,

Noah Nichelson

President

Asbury Carbons, Inc.