?

Log in

Previous Entry | Next Entry

Mmmmmm.

It's been way too long since I've been to Malena's Taco Shop. Bridget and I headed there for lunch today. Mmmmmm. Two asada tacos and $4.00 later, I was a happy, contented campter. I really should take John there.

Then went across the street to The Fountainhead Gallery. They had some nice stuff in there, and some of it at reasonable prices. Beautiful basketwork. A friendly dog. A gallery owner who left us alone when it because clear we weren't pulling out our checkbooks anytime soon.

And I think I get double extra bonus points for actually coming back to the office. It's a glorious bright, sunny and warm day out there. There are a lot of things I'd rather be doing than sitting here, dealing with employees upset over the NEC security breach (major compromise of employee personal health/welfare data on the corporate --read out of Seattle-- level). It could be ugly, but at least no hard payroll information was involved.
If you want to know what, the text of the e-mail is

URGENT EMPLOYEE NOTICE: NETWORK SECURITY COMPROMISE AFFECTING NEC USA, NEC AMERICA, NEC BUSINESS NETWORK SOLUTIONS, ACTIVE VOICE, NEC ELUMINANT, NEC FINANCIAL SERVICES, NEC CAPITAL, NEC LOGISTICS, NEC FOUNDATION, DCM SOLUTIONS, NMI, MICRO COMPUTER SYSTEMS AND PERMEO TECHNOLOGIES

We regret to say that we recently learned of a breakdown of data security measures that unintentionally resulted in unprotected access to employee personal data for the companies listed above. We are providing this information to all affected employees immediately, and are currently pursuing with a sense of urgency, every available procedure to protect all of us from any adverse consequences. At this time we have knowledge that this internal security compromise exposed employee benefit eligibility records, intended for our major health and welfare plan providers, to public internet access. Such records include employee and dependent names, addresses, home telephone numbers, social security numbers, birth dates, titles and compensation.

Although security measures were immediately reinstated and the data was taken off line, before the failure of security was discovered, our log files indicate that unauthorized downloads took place. No personal medical information or medical records were involved. Also, we have no knowledge of any criminal activity or use of the data, but we are now working with federal law enforcement officials who specialize in computer crime, to take every measure possible to prevent any type of fraudulent use of that information.

We are moving quickly to establish support that enables all employees to protect their personal identities and other resources in the event of attempted theft and/or fraud. We are retaining the services of a leading private security firm to guide us with additional precautions and procedures to further protect your privacy. We will notify you immediately when these measures are fully in place.

In the meantime, we are researching the government and associated websites on the attached for guidance on actions employees can take to prevent unauthorized use of their personal information. Additionally, you are authorized to access these sites directly during your work hours and using your company computer. If you need help with this information or any of these special sites, please contact your Human Resources Department and they will be available to help you.

In the event that you are aware of other employees who either do not have e-mail access and/or have not received this notice, please distribute this material to them. We are making every effort to get this information to all employees.

If you have any questions regarding this matter, please contact your respective Human Resources Department for more information or clarification. All of our HR organizations are coordinating with XXXX as the central point of information on this matter.

We want you to know that we take this lapse in security very seriously and are committed to resolving it quickly and with minimum impact on our employees.



Ain't technology grand?