Reports suggest that as many as 2800 girl scouts in Orange County may have been affected in an incident which lasted just a day.
Is your organization GDPR compliant? Find out more about the Certified Data Protection Officer trainingAffected information could include names, email and home addresses, driver’s license details, insurance policy numbers and health history information.
Those hit by the breach were contacted last week.
They were told that the attack began on September 30 when an unauthorized third party gained access to an official Girl Scouts Orange County Travel email account, which was used to “send emails to others” — presumably phishing emails.