South Carolina Health and Human Services, April - Major Security Breaches
Here’s a case of internal subterfuge: a government employee stole data about 228,000 people by emailing it to himself. Some of that data included Medicaid ID numbers that were linked to social security numbers. Other records included addresses, birthdays, phone numbers, etc. Authorized users of internal networks can access the most sensitive data. Though this former employee was eventually discovered and arrested, if the South Carolina agency had systems in place to immediately alert IT admins to the movement of large amounts of data (or prevent it to begin with), this incident may have been avoidable.