An employee of San Diego County Office of Education (“SDCOE”) inadvertently sent an employee retirement contribution spreadsheet to SDCOE’s retirement contribution contacts at forty-four school districts throughout the Southern California area.
The spreadsheet contained the names, Social Security numbers, age, and retirement account contribution information for certain participants in retirement plan.
SDCOE immediately launched an internal investigation into the incident and attempted to recall the email.
TPRM report: https://scoringcyber.rankiteo.com/company/san-diego-county-office-of-education
"id": "san233617522",
"linkid": "san-diego-county-office-of-education",
"type": "Breach",
"date": "12/2017",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'Education',
'location': 'San Diego, California',
'name': 'San Diego County Office of Education',
'type': 'Government Office'}],
'attack_vector': 'Human Error',
'data_breach': {'file_types_exposed': 'Spreadsheet',
'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['names',
'Social Security numbers',
'age',
'retirement account contribution '
'information']},
'description': 'An employee of San Diego County Office of Education (SDCOE) '
'inadvertently sent an employee retirement contribution '
'spreadsheet to SDCOE’s retirement contribution contacts at '
'forty-four school districts throughout the Southern '
'California area. The spreadsheet contained the names, Social '
'Security numbers, age, and retirement account contribution '
'information for certain participants in retirement plan.',
'impact': {'data_compromised': ['names',
'Social Security numbers',
'age',
'retirement account contribution '
'information']},
'response': {'containment_measures': ['Email recall',
'Internal investigation']},
'title': 'Data Breach at San Diego County Office of Education',
'type': 'Data Breach'}