P2019-ND-109

On September 18, 2018, an unidentified party gained access to an employee?s email account. The unidentified party applied a forwarding rule and copied the contents of the employee?s email account. The cause of the incident is a phishing email containing a malicious link that was received by the employee. The breach was discovered on October 11, 2018, when the employee sent an internal email to her assistant and received a bounce back message stating that the email inbox full. The unidentified party?s access was terminated immediately upon discovery on October 11, 2018.

File Type: pdf
File Size: 528 KB
Categories: 2019