Unauthorized intrusion and malware. The Organization?s online ordering and billing system was compromised by malware. The Organization reported that the system was compromised on December 23, 2012. Personal information in the system was exposed for approximately 14 months (between December 2012 and January 2014). The Organization was made aware of the breach when it was notified by the United States Federal Bureau of Investigation on February 12, 2014.