McMenamins revealed that data from employees dating back to 1998 was compromised in the ransomware attack that took place on December 12.
Employee files accessed during the attack include standard information such as name, address, telephone number, date of birth, race, disability status, social security numbers, bank account, information, health insurance plans, income amount, and disciplinary notes.
Further information on the attack revealed that between 1998 and 2010, the attackers gained access to business records, human resources data and payroll data files while encrypting the data of company employees.
However, the company was able to access the files from 2010 to 2021 and has since notified all employees who worked with the company between July 1, 2010, and December 12, 2021.
For those who worked with the company from January 1, 1998, and June 30, 2010, the company provided them with a notice about options for support.
For more information, read the original story in ZDNet.