DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Bullying is not an appropriate breach response

Posted on March 28, 2013 by Dissent

I recently posted what I considered to a stupid lawsuit – one where the party that had a breach sued the hapless recipients of the breached information.

Today I found another example of bullying and threats in response to a breach.  It seems that an employee of Tooele County made an error years ago and misfiled documents with about 200 employees’ names and Social Security numbers in one employee’s file.  Years later, when that employee retired and requested a copy of his files, they scanned everything that was in his folder – including the misfiled documents – and sent it to him on a CD.

The recipient contacted the state’s attorney general when he realized what he had been sent because he was concerned that if he just turned the CD over to the county, the breach might get swept under a rug.  The AG’s office wouldn’t accept the CD, however, and referred him back to the county. And then, according to the Salt Lake Tribune:

“We contacted the AG’s office, and they then contacted Mr. Brozovich and essentially told him what he could be facing,” [Public Information Office Wade]Mathews said.

Brozovich was advised that he could be charged with a felony — punishable by up to five years in prison — if he kept the identifying documents he knew he wasn’t meant to have.

“We appreciate his cooperation and that of the AG’s office,” Mathews said, adding that no charges would be brought against Brozovich.

Why was there any need for the county or AG’s office to threaten the recipient when he was obviously trying to do the right thing?

Enough already, folks. Stop the bullying. Stop the threatening. If you screwed up, apologize,  profusely thank the person who contacted you, and offer to come retrieve the information at their earliest convenience.

Category: Breach IncidentsExposureGovernment SectorPaper

Post navigation

← Family Health Enterprise notifies patients after laptops stolen in office burglary
Court Holds that Hannaford Data Breach Suit Cannot Proceed as Class Action →

1 thought on “Bullying is not an appropriate breach response”

  1. IA Eng says:
    March 29, 2013 at 9:14 am

    Next time, simply smear it via the press. Since the AG can’t handle taking the CDROM and shreding it, maybe they will have better luck at dodging what other issues they may have ignored in the past. like anything else – if there is one count of neglect, there are bound to be many more.

    The threat seemed more like a “don’t bother us with trivial matters son ! We have other pressing matters to attend to…”

    Many are bound to ethical behavior – NOT pathetic behavior. All it would have taken is 15 minutes of some ones’ time to take the CDROM, listen to him and he would have walked out. No harm no foul. So you’d miss 15 minutes of your favorite soap opera. wooopie.

Comments are closed.

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Masimo Manufacturing Facilities Hit by Cyberattack
  • Education giant Pearson hit by cyberattack exposing customer data
  • Star Health hacker claims sending bullets, threats to top executives: Reports
  • Nova Scotia Power hit by cyberattack, critical infrastructure targeted, no outages reported
  • Georgia hospital defeats data-tracking lawsuit
  • 60K BTC Wallets Tied to LockBit Ransomware Gang Leaked
  • UK: Legal Aid Agency hit by cyber security incident
  • Public notice for individuals affected by an information security breach in the Social Services, Health Care and Rescue Services Division of Helsinki
  • PowerSchool paid a hacker’s extortion demand, but now school district clients are being extorted anyway (3)
  • Defending Against UNC3944: Cybercrime Hardening Guidance from the Frontlines

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • US Customs and Border Protection Plans to Photograph Everyone Exiting the US by Car
  • Google agrees to pay Texas $1.4 billion data privacy settlement
  • The App Store Freedom Act Compromises User Privacy To Punish Big Tech
  • Florida bill requiring encryption backdoors for social media accounts has failed
  • Apple Siri Eavesdropping Payout Deadline Confirmed—How To Make A Claim
  • Privacy matters to Canadians – Privacy Commissioner of Canada marks Privacy Awareness Week with release of latest survey results
  • Missouri Clinic Must Give State AG Minor Trans Care Information

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.