Beginning on October 3 and continuing through December 18, 2015, an unknown unauthorized party accessed two cloud providers used by the Organization. Using valid credentials, the unknown party was able to view or download customer information stored with these cloud providers and make a file containing some of that user information. The Organization became aware of the incident on December 3, 2015, when it learned that a file available on the Internet appeared to contain user records. It was not immediately apparent how the file had been created. It was not until approximately December 28, 2015 that the Organization discovered its cloud providers had been accessed without authorization.