On April 26, 2016, the Organization discovered that during the testing and roll out of the Organization?s ecommerce the debugging mode was inadvertently turned on, which stored payment card transaction data into plain text. An unauthorized third party subsequently exploited a misconfiguration in the Organization?s ecommerce servers to gain access to and acquire the information at issue. The intrusion potentially exposed the personal information of individuals who made purchases using the ecommerce site between May 12, 2015, and April 28, 2016.
File Type:
pdf
File Size:
329 KB
Categories:
2017