Posts tagged data breach
UFCW Hit with Class Action Over Data Breach
October 2, 2025 // In the complaint, plaintiff GeriSue Hancock said the breach affected about 55,747 people and was detected by the union on Dec. 11, after “certain data may have been accessed or acquired” the day prior. According to the filing, UFCW Local 7R began notifying affected individuals this week — more than nine months later — allegedly hindering victims’ ability to mitigate identity-theft risks. Hancock, suing on behalf of a putative class, claimed the Denver-based local, which represents roughly 23,000 workers across supermarkets, packing houses and food processing plants, among others in Colorado and Wyoming, stored unencrypted, unredacted PII and failed to implement basic safeguards. The suit cited alleged deficiencies including inadequate employee training, lack of phishing-resistant multi-factor authentication, insufficient logging and monitoring, and retention of sensitive data longer than necessary.
Walberg, Allen Demand Answers on Union Failures to Protect Workers’ Sensitive, Personal Info
May 8, 2025 // The National Labor Relations Board requires that unions receive personal information for the purpose of communicating with workers who are eligible voters in a union election. This information includes individuals’ full names, work locations, shifts, job classifications, home addresses, personal email addresses, and personal cell phone numbers. In order to ensure the union is taking the necessary steps to protect the employee data it collects and to assess whether all this data is necessary, the Committee requests that you provide the following information no later than May 22, 2025
Federal employee alleges DOGE activity resulted in data breach at labor board
April 16, 2025 // The specialist, Daniel Berulis, made the allegations in a sworn declaration submitted to members of Congress and to a federal whistleblower office, asking them to investigate what he called a cybsersecurity breach. His lawyer said that Berulis had also been targeted with a threatening note and photographs showing him near where he lives. The declaration was first reported by NPR, and NBC News has not independently verified the allegations.
Pennsylvania Teachers Union Admits Cyberattack That Hit 500,000 People in July
March 26, 2025 // Personal records of more than a half-million people were compromised in a cyberattack that occurred last July on the Pennsylvania State Education Association. The union acknowledged the data breach this week. On March 17, the state’s largest teachers union sent letters about a security data breach that occurred July 6, 2024. An investigation into the incident, completed Feb. 18, found that sensitive personal information was acquired by an “unauthorized actor” who accessed files on the union’s network, according to the letter.
Commentary: SEIU 1000 SECURITY BREACH EXPOSES UNION HYPOCRISY ON GOVERNMENT TRANSPARENCY
April 30, 2024 // Imagine our shock when news broke recently that SEIU 1000, one of the largest unions in California, had been the target of a ransomware attack that led to more than 308 gigabytes of union data being captured by the hackers. This included membership information, such as Social Security numbers, home addresses, phone numbers and birthdates. Where did SEIU 1000 get this information to have it leaked in the first place? Much of the data was included on lists given to it by the state of California, per the union’s bargaining agreement, on a regular basis.