On March 27, the Vermont Department of Labor began notifying individuals that a now-former employee improperly accessed and acquired their information from an unemployment insurance database. The personal information, which included names and Social Security numbers, was found in the former employee’s possession, but investigators have found no evidence to date that the information was transferred to any other parties or misused.
As far the state has been able to determine, the improper access and acquisition occurred between mid-January 2015 to late February, 2015. The Department discovered the breach on February 24, 2015.
You can read the notification letter to employees here (pdf). Employers were also notified that their state-assigned employer number and current or former employees’ information was acquired.