The Sony Pictures breach, which normally wouldn’t be covered on this blog, serves as a useful reminder of how much medical and/or health insurance information employers hold on employees – information that you wouldn’t want in the hands of hackers.
See Brian Kreb’s post today on the Sony breach. The linked file tree directory is concerning.
Update: Some of the data involved in this breach are PHI under HIPAA. See this post.