A recent data breach at the Securities and Exchange Commission (SEC) has put its employees at risk of identity theft. The SEC has sent breach notifications to around 4,000 SEC employees. The personal identifying information (PII) exposed includes Social Security numbers and other payroll information.
The PII was included in an unencrypted e-mail, according to Drew Malcomb, a Department of Interior spokesman. The government outsources some of its human resource functions and the e-mail was sent out by one such private contractor. The SEC requires PII to be encrypted when shared by e-mail. The contractor failed to encrypt the PII and the government’s software failed to detect the unencrypted data transfer.
Do you believe you are a victim of identity theft? Have you discovered accounts on your credit report that you did not open? Contact data security and identity theft protection lawyer Micah Adkins for a free consultation using the contact form below.