Support Centre

You have out of 5 free articles left for the month

Signup for a trial to access unlimited content.

Start Trial

Continue reading on DataGuidance with:

Free Member

Limited Articles

Create an account to continue accessing select articles, resources, and guidance notes.

Free Trial

Unlimited Access

Start your free trial to access unlimited articles, resources, guidance notes, and workspaces.

Michigan: Morley notifies individuals of a data security incident

Morley Companies, Inc. notified, on 2 February 2022, its current and former employees and clients of a data security incident. In particular, Morley stated that it learned of the incident on 1 August 2021 when its data became unavailable, and stated that it immediately took steps to secure its environment and commenced an investigation to determine the scope of the incident and the type of data that was impacted. Moreover, Morley detailed that its investigation showed that the type of information impacted included names, addresses, social security numbers, dates of birth, client identification numbers, medical diagnostic and treatment information, and health insurance information. Furthermore, Morley noted that it has taken steps in response to the incident and has made alterations to its cyber environment to help prevent similar incidents from occurring in the future.

Additionally, the Michigan Attorney General, Dana Nessel, cautioned the impacted individuals, highlighting that while the notification letters to potentially affected individuals are legitimate, bad actors could take the opportunity to use the breach to access additional personal information.

You can read the press release here and the AG's caution here.