Two former employees of electric car company Tesla have been accused of mishandling employee data, leading to the accidental leak of personal information for over 75,000 individuals. The Maine Attorney General’s Office announced the data breach in an advisory notice, which included a copy of Tesla’s original alert. The breach was brought to Tesla’s attention by a foreign media outlet named Handelsblatt.
The investigation revealed that the two former employees had violated Tesla’s IT security and data protection policies by misappropriating and sharing the confidential information with the media outlet. However, Handelsblatt has stated that it does not intend to publish the personal information and is legally prohibited from using it inappropriately.
Upon discovering the breach, Tesla took immediate legal action and seized the equipment of the two employees responsible. Lawsuits were filed against them, resulting in the court-ordered prohibition of further use, access, or dissemination of the data. Tesla cooperated with law enforcement and external forensics experts throughout the process.
The compromised personal information includes Social Security numbers, names, and other identifying information. To mitigate the impact on affected individuals, Tesla is offering credit monitoring and identity detection and resolution services.
Data breaches can have serious consequences for individuals, ranging from identity theft to financial fraud. It is crucial for companies to prioritize data security and implement robust measures to protect sensitive information. Instances like these highlight the importance of strict IT security policies and continuous monitoring to prevent unauthorized access and breaches.
Source:
- Maine Attorney General’s Office