MN: Auditor says slack procedures contributed to MNsure breach
Jackie Crosby reports:
The state’s Office of the Legislative Auditor said Thursday that a data privacy breach at MNsure involving 1,600 Social Security numbers was unintentional, but that slack internal procedures at the new health insurance exchange agency “contributed directly” to the disclosure.
In a 22-page report, Legislative Auditor Jim Nobles found “no evidence of malicious intent” by the employee, who accidentally sent an e-mail attachment to an insurance broker on Sept. 12 that contained a list of Social Security numbers and other data on brokers interested in selling insurance offered on the MNsure website.
Read more on Star Tribune.