- The compromised information includes members’ names, addresses, insurance policy numbers and medical histories.
- On September 30, 2018, a third-party vendor gained unauthorized access to an email account used by the organization.
The Orange County, California branch of the Girls Scouts of America may have potentially exposed the personal data of 2,800 members. The compromised information includes members names, addresses, insurance policy numbers and medical histories.
Christina Salcido, the VP of Mission Operations of Girls Scouts of Orange County (GSOC), issued an alert informing members about the incident. The letter said that the hack occurred on September 30, 2018, after a third-party vendor gained unauthorized access to an email account used by the GSOC.
However, the organization claims that no other email accounts, computer networks, servers or other systems were affected in the breach. The organization is yet to determine the technique used by the hackers to gain access to the email account. Meanwhile, GSOC said that its service provider has changed the password to the affected account.
GSOC also said that it has notified the Office of the Attorney General of California about the breach. The organization also reviewed the contents of the affected email account and has deleted all emails that contained any personal information.
The firm has also implemented a secure online system as an additional layer of security to prevent such future attacks. The members have been urged to monitor their respective accounts and use credit-monitoring tools.