DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Was a package of W-2’s shipped by Ceridian via FedEx tampered with? Ember Corp. prudently decides not to take chances.

Posted on January 26, 2011 by Dissent

Boston-based Ember Corporation is notifying 50 current and former employees of a possible breach after a package shipped by its payroll provider, Ceridian, via FedEx appeared to have been tampered with during shipment.

In a notification to the New Hampshire Attorney General’s Office, Ember’s counsel indicated that the package arrived on January 10 but two corners of the package, sealed with clear packing tape, were opened and the contents appeared wrinkled.

The package contained individual W-2 forms for current and some former employees, each in their own envelope, and a summary form for the employer that was not in its own envelope. Although all of the individual W-2 forms appeared intact, the summary forms were “wrinkled, out of order, and had been tampered with.”

Cynthia Larose of Ember’s law firm, Mintz Levin, reported that FedEx would neither take any responsibility nor assist in the investigation.

Ceridian also denied responsibility but offered to provide free credit monitoring services through Equifax.  The offer was considered inadequate for a variety of reasons and Ember contracted with Debix to provide services for its employees.   They also reported the incident to the police.

This really seems like a situation in which “abundance of caution” might actually be appropriate as there is no clear evidence of a breach, but since no one could satisfactorily explain the out-of-order and wrinkled summary forms, the company decided to err on the side of caution.

No related posts.

Category: Breach IncidentsBusiness SectorOtherSubcontractorU.S.

Post navigation

← Hamilton Beach e-commerce sites compromised; customers notified
Universal Technical Institute notifies 98 applicants of security breach →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Integrated Oncology Network victim of phishing attack; multiple locations affected (2)
  • HHS’ Office for Civil Rights Settles HIPAA Privacy and Security Rule Investigation with Deer Oaks Behavioral Health for $225k and a Corrective Action Plan
  • HB1127 Explained: North Dakota’s New InfoSec Requirements for Financial Corporations
  • Credit reports among personal data of 190,000 breached, put for sale on Dark Web; IT vendor fined
  • Five youths arrested on suspicion of phishing
  • Russia Jailed Hacker Who Worked for Ukrainian Intelligence to Launch Cyberattacks on Critical Infrastructure
  • Kentfield Hospital victim of cyberattack by World Leaks, patient data involved
  • India’s Max Financial says hacker accessed customer data from its insurance unit
  • Brazil’s central bank service provider hacked, $140M stolen
  • Iranian and Pro-Regime Cyberattacks Against Americans (2011-Present)

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • On July 7, Gemini AI will access your WhatsApp and more. Learn how to disable it on Android.
  • German court awards Facebook user €5,000 for data protection violations
  • Record-Breaking $1.55M CCPA Settlement Against Health Information Website Publisher
  • Ninth Circuit Reviews Website Tracking Class Actions and the Reach of California’s Privacy Law
  • US healthcare offshoring: Navigating patient data privacy laws and regulations
  • Data breach reveals Catwatchful ‘stalkerware’ is spying on thousands of phones
  • Google Trackers: What You Can Actually Escape And What You Can’t

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.