On September 30, 2018, the Organization?s third-party website developer failed to save a portion of the back-end of the website as viewable by “admin only”, such that the page and a link were viewable by the public. At the time of the breach, there were 200 fake names included for the purpose of testing, but the list also included people who signed up for the test September 28, 2018. The Organization?s staff discovered the incident on October 1, 2018 after checking the website.

File Type: pdf
File Size: 531 KB
Categories: 2019