P2012-ND-02

In violation of its agreement with the organization, a user of the Organization internet site at an automotive dealership (located in Edmonton, Alberta) provided answers to their password recovery information. This allowed an individual posing as an organization employee to fraudulently gain access and reset the dealership user?s organization login password. Subsequently, the credentials were then used to view one consumer file on the organization internet site. The incident occurred on September 11, 2011, and was discovered on the same day

File Type: pdf
File Size: 137 KB
Categories: 2012