From the no-need-to-hack-when-it’s-leaking dept., state edition, the North Carolina Department of Information Technology and Office of State Human Resources are notifying 84,860 current or former state agency employees that a file with their name and SSN was uploaded by mistake to a state intranet site accessed by more than 65,000 authenticated users:
We are writing to inform you of a recent security concern involving your personal information. At this time, we have no evidence that any of your personal information has been accessed by anyone outside of those involved in the state identification and remediation efforts. However, from May 14, 2020 to July 30, 2021, a file containing your name and Social Security number was inadvertently accessible on a state intranet site to some state employees.
The file was not accessible to the general public, and we have no information indicating that the file was improperly accessed by anyone. The available data show no evidence that anyone accessed the information outside of those involved in the state identification and remediation efforts. However, at this time we cannot rule out the chance that the file was improperly accessed.
Read the full notice.