P2020-ND-032

On November 19, 2019, a consultant who provides human resource services to the Organization was targeted with a phishing email from an unauthorized account. The email requested the consultant provide certain human resource information about employees of the Organization. The consultant did not identify the email as a phishing request and, on November 20, 2019, and responded to it, disclosing the personal information at issue. The breach was discovered the same day. The Organization is not aware of any breach of or incursion into any of its security systems.

File Type: pdf
File Size: 620 KB
Categories: 2020