Ouch. This isn’t a W-2 phishing attack, but in some ways, it seems even worse. Carmel Unified School District notified employees that a successful phishing attack had gained access to an employee’s email account that had “a limited number of documents.” Those documents may have contained employees’ or dependents’ information: Employee social security numbers Spouses’…
Category: Phishing
Algonquin College faculty union files grievance over data breach
If you’re not transparent about a breach and people cannot figure out how to protect themselves, you may be almost guaranteeing people will sue you about it or file a grievance. CBC reports: The union representing faculty at Algonquin College has filed a grievance against the school after a recent data breach. Ontario Public Service Employees…
Nigerian citizen sentenced in phishing scheme that targeted Groton schools
The Day reports: A Nigerian citizen who was living in Smyrna, Ga., was sentenced Monday by U.S. District Judge Jeffrey A. Meyer in New Haven to approximately 10 months of imprisonment, time he had already served, for his role in a scheme to obtain the personal identifying information of school employees in Groton and elsewhere. Olukayode Ibrahim Lawal,…
Florida Keys Community College Provides Notice of Data Security Incident
From their press release. KEY WEST, Fla., Feb. 27, 2019 /PRNewswire/ — Florida Keys Community College (the “College”) is taking action after discovering that it became the target of a phishing email campaign that compromised several employee email account credentials. What Happened? On October 19, 2018 Florida Keys Community College (the “College”) learned of suspicious activity…
UConn Health: 326,000 could be impacted by recent phishing attack
Matt Pilon reports: UConn Health on Friday disclosed that an unauthorized third party had accessed employee email accounts, potentially breaching the privacy of 326,000 patients and others. Of that number, 1,500 could have had their social security numbers exposed, UConn Health said. For others, potentially acquired details include names, dates of birth, addresses, and billing…
Centinela Valley Union High School District notifies employees of W-2 phishing incident
Ding! Ding! Ding! I think we have our first W-2 phishing report of this year, although of course I may have missed other ones. This one involves the Centinela Valley Union High School District in California. From their notification to the state: As a follow up to the email sent to you on January 31, 2019,…