AEG Presents recently discovered a data breach involving an employee who sent company files from their work email account to a personal account. The breach was identified on June 18, 2024, with the unauthorized transmissions occurring between September 27, 2021, and May 3, 2024. The files included confidential company information as well as personal data such as names and Social Security numbers.
A forensic investigation found no evidence that the data was downloaded, forwarded, or misused. The former employee, who is no longer with the company, declared that they did not use, disclose, or transfer the data. Despite the lack of evidence for data misuse, AEG Presents decided to notify affected individuals for transparency and to uphold company policy standards.
In response to the incident, AEG Presents worked with forensic experts to secure and contain the data. The company also took immediate steps to restrict system access and review its access control policies. Additionally, AEG is scanning the dark web for any signs of unauthorized access.
Affected individuals are advised to remain cautious about suspicious activity involving their personal data. They should avoid opening attachments or clicking on links from unknown sources and verify the identity of anyone requesting sensitive information. Any suspicious communications should be reported to the IT help desk for further investigation.
Reference:
