P2019-ND-038

On September 26, 2018, an employee of the Organization was searching for internal policies when he noticed he was able to access an electronic folder titled “Human Resources” in the Organization?s shared drive. The employee immediately notified a Human Resources manager, who contacted IT. The proper accesses were restored the same day. The Organization believes that the permission settings on the folder were inadvertently altered on August 8, 2018 when a new Human Resource employee requested permission to the folder. A contracted IT worker inadvertently unlocked the permissions so that the folder was potentially accessible to all employees who had access to the shared drive. The Organization reported it has no evidence to indicate that any information contained in the folder was accessed or used by any unauthorized individual.

File Type: pdf
File Size: 332 KB
Categories: 2019