From the Minneapolis Star Tribune:
“A hacker attack at payroll processing firm Ceridian Corp. of Bloomington has potentially revealed the names, Social Security numbers, and, in some cases, the birth dates and bank accounts of 27,000 employees working at 1,900 companies nationwide”
A corporation gets hacked, ordinary citizens get screwed. It happens so often that it’s hardly news.
This is interesting to me because Ceridian is a local company and the local media picked up the story. That’s a good thing. I’m glad our local media is still able to hire professional journalists. The executives of a company that fail like that need to read about themselves in their local paper and watch themselves on the evening news. They might learn something. If we’re lucky, the hack might even get mentioned at the local country club and the exec’s might get a second glance from the other suits.
We aren’t that lucky.
In a follow up story, the Star Tribune interviewed a man who claims that he has not had a relationship with Ceridian for 10 years, yet Ceridian notified him that his data was also stolen. The Star Tribune reports that Ceridian told the victim that the compromise of 10 year inactive customer data was due to a ‘computer glitch’:
“a Ceridian software glitch kept it in the company's database long after it should have been deleted.”
Sorry to disappoint the local media, but computer glitches are not the reason that 10 year old data is exposed to hackers.
Brain dead management is the cause.
But even brain dead management occasionally shows sings of life. According to the customer whose 10 year old data was breached:
"The woman from Ceridian said they're working on removing my information from the database now,”
Gee thanks. What’s that horse-barn-door saying again?
Given corporate America’s aversion to ‘DELETE FROM…WHERE…’ queries, my identity and financial information is presumably vulnerable to exposure by any company that I’ve had a relationship with at any time since computers were invented.