On February 19, 2015, while troubleshooting a software issue, an employee of the Organization inadvertently uploaded an Excel file containing the information at issue to the unsecured public area of a website. The incident was discovered on May 20, 2015, when security staff at two member credit unions informed the Organization that they had discovered an unprotected Excel file accessible on the internet that contained email addresses. Employees whose email addresses were listed in the file had been experiencing an increase in spam. The Excel file was removed from the website on May 21, 2015.

File Type: pdf
File Size: 427 KB
Categories: 2017