As businesses continue to apply for relief through Small Business Administration (SBA) programs, SBA’s Carol R. Wilkerson announced that nearly 8,000 business owners’ information may have been exposed to unauthorized users on March 29, 2020. This incident only affected the Disaster Loan Program and not the Paycheck Protection Program. The SBA has notified the business owners that may have been affected and offered them a year of free credit monitoring.

At this time, the SBA has stated that the affected part of the system that allowed unauthorized users to view business owners’ information has been disabled. Even though the vulnerability has been reportedly addressed, we recommend any business owners that applied for relief through the Disaster Loan Program to check their accounts and review their credit reports for any unusual or unauthorized activity. This should serve as a reminder to routinely review business accounts and personal accounts to catch any unauthorized uses early and mitigate the resulting issues.

Please visit our COVID-19 Toolkit for all of Taft’s updates on the coronavirus and related legal issues.

Print:
Email this postTweet this postLike this postShare this post on LinkedIn
Photo of Scot Ganow Scot Ganow

Scot is a partner at Taft and is chair of the firm’s Privacy, Security, and Artificial Intelligence Practice.  As a former chief privacy officer leveraging more than 10 years of management and compliance experience in Fortune 500 companies prior to law school, Scot…

Scot is a partner at Taft and is chair of the firm’s Privacy, Security, and Artificial Intelligence Practice.  As a former chief privacy officer leveraging more than 10 years of management and compliance experience in Fortune 500 companies prior to law school, Scot brings a diverse business background to his practice at Taft.  Scot represents clients in a variety of sectors, including consumer reporting, construction, healthcare, broadband services, and manufacturing.

Read more about Scot GanowScot's Linkedin Profile
Show more Show less
Photo of Zenus Franklin Zenus Franklin

Zenus has wide-ranging experience with data governance and information technology, which brings a unique and vital perspective to his practice. He advises clients on data privacy matters, such as risk management, policy development, training, audits, website privacy policies and terms of use, website…

Zenus has wide-ranging experience with data governance and information technology, which brings a unique and vital perspective to his practice. He advises clients on data privacy matters, such as risk management, policy development, training, audits, website privacy policies and terms of use, website cookies, M&A due diligence, and data breach and incident response management. His expertise spans federal privacy regulations such as HIPAA, GLBA, FCRA, TCPA, FERPA, and COPPA, along with state laws governing the processing of personal information, such as the California Consumer Privacy Act and state Data Broker laws.  Additionally, Zenus provides guidance to clients on global data privacy matters, including the GDPR.

Read more about Zenus FranklinZenus's Linkedin Profile
Show more Show less
Related Posts
Taft Wins First Data Breach Class Action to Reach Illinois Supreme Court: Key Takeaways
February 5, 2025
Top 10 Technology Issues to Watch for in 2025
November 4, 2024
FTC: Drizly Executive Held to Be Individually Liable for 2018 Data Breach
November 7, 2022