On September 26, 2018, the Organization was informed by its vendor that provides an add-on to websites (Shopper Approved), that the computer code Shopper Approved uses to facilitate customer reviews had been compromised. The vulnerability was patched and malicious code was immediately replaced, but there was a short period of time of potential exposure of personal information. The security problem was noticed by the vendor on September 15, 2018 and fixed on September 17, 2018. The Organization does not know how the vendor discovered the security incident.
File Type: pdf