Easterseals Delaware & Eastern Shore provides notice of data security incident

Delaware State News
Posted 11/29/21

Some participants in the Easterseals Delaware & Maryland’s Eastern Shore program may have been affected by a privacy incident involving their personal information.

According to a release …

Create an account for additional free stories

Thank you for visiting BayToBayNews. Registered visitors can read 5 free stories per month. Visit our sign-up page to register for your free stories.


Start a digital subscription today!

Subscribers can read unlimited stories for a special introductory rate of $5.99 per month.

Subscribers, please log in to continue

Easterseals Delaware & Eastern Shore provides notice of data security incident

Posted

Some participants in the Easterseals Delaware & Maryland’s Eastern Shore program may have been affected by a privacy incident involving their personal information.

According to a release from Easterseals, an employee’s email account that was subject to fraudulent activity was discovered June 15. The disability services and support organization secured the account and worked with computer forensics professionals to investigate the incident. Easterseals confirmed that unauthorized access to the email, as well as other organization email accounts, occurred on sporadic occasions between April 25 and July 20.

Easterseals was unable to confirm with certainty which emails in an account, if any, were accessed. However, the company forced a password reset of all accounts and extensively reviewed the contents of them to notify potentially affected individuals out of an abundance of caution.

Though there is no evidence that any information has been misused, the reviewed emails and attachments contained personal information like Social Security numbers, addresses, prescriptions, medical records, account numbers and other health-related information.

Ken Sklenar, president/CEO of Easterseals, said in the release that the group has reset account passwords and implemented multifactor authentication for all accounts to enhance existing protections.

Notification to all individuals potentially affected by the incident will be mailed over the next three to five days.