A hackers accessed an email containing an attachment which included 2015 W-2 tax forms for all salaried and hourly employees, including some former employees.
The compromised information included names, addresses, Social Security numbers and earnings, but not dates of birth.
The company immediately took action and advised employees not to share sensitive personnel information through email.
"id": "OPS11419522",
"linkid": "opsec-security-inc",
"type": "Breach",
"date": "03/2016",
"severity": "65",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"