Class-action suit alleges malpractice and lack of regard following negligent handling of data
An article review.
If you’ve been treating employee data as “less valuable” than customer data due to a belief it presents a lower legal risk, you may want to rethink that strategy! Officials at Seagate probably wish that they had following the dissemination of W-2 forms and other personally identifiable information for over 10,000 employees, gained through a phishing campaign pretending to be from the company’s CEO.
Traditionally the dissemination of customer information has been among the biggest fears of organizations when it comes to a data breach, and when it comes to public relations that is still largely the case. This suit, however, shows that the loss of employee information can be just as serious from a legal point of view–and warrants the same amount of care.
Seagate disputes the claims put forth in the suit, which allege not only negligence but unfair business practices in the way that data was handled, and how the firm responded to the breach.
Original article by Charlie Osborne of Zero Day and published by ZDNet.