General Electric employees hit by Canon data breach

A raft of information, including passports and social security numbers, was accessed for 10 days in February

General Electric (GE) has warned its current and former workers that their sensitive and personal data may have been compromised in a data breach suffered by a key supplier.

Canon Business Process Services, an IT service management company that works on behalf of the tech giant, learned that a a third-party party gained access to an email account that contained sensitive documentation between 3 and 14 February. 

Advertisement - Article continues below

No GE systems were inappropriately accessed or breached by hackers as part of the data security incident, according to a notice circulating among those potentially affected. Only the email account, which belongs to Cannon, was compromised. 

This account contained documents of certain GE employees, former workers and beneficiaries entitled to benefits maintained through Canon’s systems.

The company has said these files, which contain sensitive and personal information, were uploaded by or on behalf of workers and former workers. 

The data accessed includes direct deposit forms, driver’s licenses, passports, birth certificates, marriage certificates, death certificates, medical child support orders, and tax withholding forms, among other forms of documentation. 

The compromised documents may have also contained names, addresses, social security numbers, driver’s license numbers, bank account numbers, passport numbers and individuals’ dates of birth.

Advertisement - Article continues below

“After learning of the issue, we quickly began working with Canon to identify the affected GE employees, former employees and beneficiaries,” GE said.

Advertisement - Article continues below

“We understand that Canon took steps to secure its systems and determine the nature of the issue. Canon also retained a data security expert to conduct a forensic investigation. GE systems, including your personal information in our systems, have not been affected by the Canon data security incident.”

Related Resource

How enterprises are embracing cyber security challenges

Enterprises across Europe, the Middle East and Africa are undergoing a significant transformation

Download now

GE added it’s working to understand how the unauthorised individual was able to access Canon’s systems, and the company is taking steps to ensure appropriate measures are implemented to prevent a reoccurrence. 

The firm assured those affected they’ll be entitled to one free credit report annually from each of the three nationwide consumer reporting agencies, under US law, and that Canon is offering identity protection and credit monitoring for two years through Experian.

Featured Resources

Top 5 challenges of migrating applications to the cloud

Explore how VMware Cloud on AWS helps to address common cloud migration challenges

Download now

3 reasons why now is the time to rethink your network

Changing requirements call for new solutions

Download now

All-flash buyer’s guide

Tips for evaluating Solid-State Arrays

Download now

Enabling enterprise machine and deep learning with intelligent storage

The power of AI can only be realised through efficient and performant delivery of data

Download now

Most Popular

cyber crime

FBI warns of ‘Zoom-bombing’ hackers amid coronavirus usage spike

31 Mar 2020
data breaches

Marriott data breach exposes personal data of 5.2 million guests

31 Mar 2020
application programming interface (API)

Apple buys Dark Sky weather app and leaves Android users in the cold

1 Apr 2020
data management

Oracle cloud courses are free during coronavirus lockdown

31 Mar 2020