Chicago-based South Loop CPA provides certified public accountant and tax preparation services to its clients. On March 5, a password-protected laptop was stolen from the firm’s offices. The theft was discovered the same day, and South Loop CPA reported it promptly to law enforcement and began an investigation. That investigation revealed that W-2 forms and tax…
Category: Business Sector
ADP joins ranks of vendors associated with W-2 data compromise
Aha. I see Brian Krebs got some answers before I did concerning a breach involving ADP. On April 30, I had reported that Allegheny College suspected that employee reports of W-2 data comprise were linked to a breach involving ADP’s iPay. In an email to this site earlier today, Rick Holmgren, the college’s vice-president of Information Services and Assessment said…
Stolen billing vendor’s laptop held patient info from 8 medical facilities
EqualizeRCM Services is a vendor providing billing and collection services to healthcare providers. In compliance with HIPAA, it has Business Associate contracts with its clients, who provide it with the information needed to fulfill its functions. The firm has headquarters in Austin, Texas, and offices in Houston and Washington, D.C. On February 29, EqualizeRCM learned that a…
Was an Alpha Payroll Services employee cruelly fired?
Over on Salted Hash, Steve Ragan commented on the Alpha Payroll Services phishing incident, first reported on Daily Dot. The premise of his article appears to be that the employee who was fired was a victim, too. Steve writes, in part: The employee, victimized by the same person who later victimized Alpha Payroll clients, was fired because…
“Large number of” Brunswick Corporation employees being notified of W-2 data breach
Another day, another phishing for W-2 incident. WFRV reports that Mercury Marine issued a press release today stating that its parent company, Brunswick Corporation, had been a victim of an email phishing scam. Brunswick, who had more than 13,000 employees globally in 2015, issued the following statement today: Brunswick Corporation today reported it has been the victim of an email phishing incident…
Stanford University continues to investigate breach involving employee W-2 data
There’s been an update to a previously noted breach report out of Stanford University. On April 12, I had reported that compromise of employees’ W-2 data had been linked to the university’s service vendor, W-2 Express, a service of Equifax. The breach did not appear to involve a breach of W-2 Express’s system or of Stanford University’s network. Rather,…