P2018-ND-059

Meridian Credit Union

On November 14, 2017, the Organization learned that an unauthorized individual accessed personal information of members and employees who entered various types of personal information into certain forms on the Organization?s public website (e.g. Contact forms, Contest Entry forms, Registration forms). The Organization?s public website is separate from the Organization?s online banking platform. The information on the public website was kept on a different platform. The Organization determined that the unauthorized third party accessed the personal information through a webpage code vulnerability.

File Type: pdf
Categories: 2018
Tags: Unauthorized access