Cyber Incident Victim: Michigan Catholic Conference
Date:
Aug 2015
Location:
United States of America
Summary
A Catholic agency in Michigan responsible for payroll processing and employee benefits across the state experienced a significant cyber attack compromising sensitive personal information of over 10,000 employees. The breach likely exposed names, Social Security numbers, birth dates, addresses, and monthly wage amounts despite the organization maintaining robust computer safeguards and up-to-date firewalls. Affected individuals were notified of the incident through formal communications advising them of the potential compromise.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
In August 2015, the Michigan Catholic Conference, a Lansing-based agency responsible for payroll processing and employee benefits across the state, experienced a significant cybersecurity breach. The organization discovered that unauthorized individuals had likely accessed sensitive personal information belonging to its employees. Conference officials publicly confirmed the incident on August 29, 2015, after initiating notifications earlier that week through mailed letters to affected individuals. The compromised data included employee names, Social Security numbers, birth dates, home addresses, and monthly wage amounts. More than 10,000 employees across Michigan received notification letters warning them about the potential exposure of their personal information. Conference spokesperson David Maluchnik acknowledged the breach while emphasizing that the organization maintained "sturdy and up-to-date" computer firewalls prior to the incident. The attack specifically targeted systems containing human resources and financial data related to employee compensation and benefits administration.
The breach exposed affected employees to potential identity theft and financial fraud risks due to the sensitive nature of the compromised data, particularly Social Security numbers combined with wage information and residential addresses. In response, the Michigan Catholic Conference implemented a notification process that reached all potentially impacted workers through physical mail correspondence. Organization officials coordinated with appropriate authorities to investigate the intrusion but did not publicly disclose specific technical details about how attackers bypassed their security measures. The public disclosure occurred through media reports on August 29, 2015, following the completion of employee notifications. No information emerged regarding whether the attackers made financial demands or how they initially gained access to the systems. The incident represented one of several major cyber attacks affecting Michigan organizations during that period, though its full operational and financial consequences were not detailed in available reports.