DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Bullying is not an appropriate breach response

Posted on March 28, 2013 by Dissent

I recently posted what I considered to a stupid lawsuit – one where the party that had a breach sued the hapless recipients of the breached information.

Today I found another example of bullying and threats in response to a breach.  It seems that an employee of Tooele County made an error years ago and misfiled documents with about 200 employees’ names and Social Security numbers in one employee’s file.  Years later, when that employee retired and requested a copy of his files, they scanned everything that was in his folder – including the misfiled documents – and sent it to him on a CD.

The recipient contacted the state’s attorney general when he realized what he had been sent because he was concerned that if he just turned the CD over to the county, the breach might get swept under a rug.  The AG’s office wouldn’t accept the CD, however, and referred him back to the county. And then, according to the Salt Lake Tribune:

“We contacted the AG’s office, and they then contacted Mr. Brozovich and essentially told him what he could be facing,” [Public Information Office Wade]Mathews said.

Brozovich was advised that he could be charged with a felony — punishable by up to five years in prison — if he kept the identifying documents he knew he wasn’t meant to have.

“We appreciate his cooperation and that of the AG’s office,” Mathews said, adding that no charges would be brought against Brozovich.

Why was there any need for the county or AG’s office to threaten the recipient when he was obviously trying to do the right thing?

Enough already, folks. Stop the bullying. Stop the threatening. If you screwed up, apologize,  profusely thank the person who contacted you, and offer to come retrieve the information at their earliest convenience.

Category: Breach IncidentsExposureGovernment SectorPaper

Post navigation

← Family Health Enterprise notifies patients after laptops stolen in office burglary
Court Holds that Hannaford Data Breach Suit Cannot Proceed as Class Action →

1 thought on “Bullying is not an appropriate breach response”

  1. IA Eng says:
    March 29, 2013 at 9:14 am

    Next time, simply smear it via the press. Since the AG can’t handle taking the CDROM and shreding it, maybe they will have better luck at dodging what other issues they may have ignored in the past. like anything else – if there is one count of neglect, there are bound to be many more.

    The threat seemed more like a “don’t bother us with trivial matters son ! We have other pressing matters to attend to…”

    Many are bound to ethical behavior – NOT pathetic behavior. All it would have taken is 15 minutes of some ones’ time to take the CDROM, listen to him and he would have walked out. No harm no foul. So you’d miss 15 minutes of your favorite soap opera. wooopie.

Comments are closed.

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Comstar LLC agrees to corrective action plan and fine to settle HHS OCR charges
  • Australian ransomware victims now must tell the government if they pay up
  • U.S. Sanctions Cloud Provider ‘Funnull’ as Top Source of ‘Pig Butchering’ Scams
  • Victoria’s Secret takes down website after security incident
  • U.S. Government Employee Arrested for Attempting to Provide Classified Information to Foreign Government
  • St. Cloud Provides Update on Ransomware Attack in 2024
  • Bradford Health Systems detected abnormal network activity in December 2023. They first sent out breach notices this week.
  • Websites selling hacking tools to cybercriminals seized
  • ConnectWise suspects cyberattack affecting some ScreenConnect customers was state-sponsored
  • Possible ransomware attack disrupts Maine and New Hampshire Covenant Health locations

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • Why AI May Be Listening In on Your Next Doctor’s Appointment
  • Watch out for activist judges trying to deprive us of our rights to safe reproductive healthcare
  • Nebraska Bans Minor Social Media Accounts Without Parental Consent
  • Trump Taps Palantir to Compile Data on Americans
  • The US Is Storing Migrant Children’s DNA in a Criminal Database
  • Home Pregnancy Test Company Wins Dismissal of Pixel Wiretapping Suit
  • The CCPA emerges as a new legal battleground for web tracking litigation

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.