And another one. You have to watch it, the tax scam season is back in full swing.
Full W-2 information including SSN# for more than 1,400 employees who worked over the past year at Campbell County Health were mistakenly released sometime Wednesday to someone using CEO Fraud.
“It appears that an unauthorized individual, impersonating a CCH executive, contacted an employee requesting W-2 information for all of our employees who had taxable earnings in calendar year 2016,” said Andy Fitzgerald, CEO of Campbell County Health.
Hospital officials moved as quickly as they could after finding out about the security breach, they are working with law enforcement investigators and a cyber security response team, said Karen Clarke, director of community relations.
The Gillette police reported Thursday that they were contacted at 2 p.m. Wednesday about the incident. A 66-year-old employee received an email that was spoofed to look like from an executive at the hospital and provided the requested information, said Police Sgt. Jason Marcus.
“We take this matter and the security of personal information very seriously at CCH and we will continue to review and enhance our security practices to further secure our systems,” Fitzgerald said.
Incidents like this can be prevented by training employees to spot social engineering red flags by stepping them through new-school security awareness training.
Get a quote and find out how affordable this is. You will be pleasantly surprised.
