Additional Info on Recent Technology Disruptions

In the US, cyber-attacks happen as often as every 39 seconds. As technology becomes more integrated into our personal and professional lives, prioritizing cybersecurity measures is critical. 

Unfortunately, PrismHR, one of Nextep’s technology partners, was recently targeted by one of these threat actors, leading to a disruption in service for portions of Nextep’s online account.

One of our core values and something we pride ourselves on is transparency. Now that we have more details, we want to share what we know about the cyber event PrismHR experienced. 

On Sunday, February 28, PrismHR discovered activity in their systems and took immediate action with their cybersecurity company. Unfortunately, this meant they needed to disable access to their systems to protect the integrity of their software and data. This is why portions of the Nextep account were temporarily unavailable while PrismHR diligently worked to restore service. As soon as we were aware of the service disruption, we began communicating with client leaders.

PrismHR’s cybersecurity team confirmed that, at this point, there is no evidence that any data had been compromised or accessed without authorization. During the incident, Nextep’s service teams worked tirelessly to manually process payrolls to ensure clients were paid on-time while PrismHR worked to bring their systems back online. PrismHR has also released an official statement reporting the cyber event and reassuring that there was no theft or unauthorized access of data. 

As the week came to an end, functionality was restored to PrismHR’s systems, and Nextep reached out to clients again to offer information on what comes next and additional support.  

As a SOC 2 Type 2 certified organization, PrismHR applies processes and procedures to ensure technology and data are secure. We are confident in the steps they have taken to handle this incident and commend the swift action taken to secure data. Nextep also has the SOC designation, which means keeping your data secure is part of our day-to-day operations. 

Cybersecurity is something we don’t take lightly

Our IT team has a serious knack for taking every measure possible to ensure the integrity of our networks, client systems, and communications. While this cyber event was not ideal for anyone involved, we remain as committed as ever to protecting your information as a trusted partner to your business. Here are just a few of the security measures we have in place at Nextep to keep our employees and clients safe: 

  • We work with partners who hold compliance accreditations like SOC 2, FedRAMP, HIPAA, NIST 800-34, NIST 800-53, NIST 800-171, and FIPS 140-2 validation
  • Secure communication with partners via SSL/TLS and encrypted emails
  • Multiple levels of offsite and cloud-based data backup and replication
  • Electronic access control and surveillance systems at our office locations
  • Hard drive encryption on all mobile computers
  • Monthly cybersecurity training for all employees
  • Automated system and data monitoring tools
  • Anti-malware systems

On top of extensive security measures, we also hold a robust cybersecurity insurance policy, as does our partner, PrismHR. It provides an additional layer of protection to help us mitigate any negative impact on our clients and our business in the event of a cyber-related incident on our systems. 

We know this situation was difficult for all involved, but we want to assure you, there is still no evidence of unauthorized access, misuse, or theft of client data at this time. We simply can’t apologize enough for the disruption. 

When we say we’re serious about cybersecurity around here, we mean it. Elevating the employment experience for you and your employees is one of Nextep’s guiding principles, and we have teams of relentlessly dedicated experts to ensure we can continue doing just that, no matter what stands in our way.
For more information about the PrismHR outage, please check out our webinar below.

Also on Nextep

On September 9, 2021, President Biden announced his action plan to fight the continued effects of the COVID-19 pandemic. The vaccine mandates outlined in the plan directly affect many employers, including businesses in the healthcare field or those with 100 or more employees. The safety requirements will be enforced by the Department of Labor and […]
Read more
On Thursday, March 11, President Biden signed a new stimulus relief package, known as the American Rescue Plan, into law. The $1.9 trillion stimulus package is geared to boost the economy and help provide wider access to COVID-19 vaccinations in an effort to curb the effects of the ongoing pandemic.  This is the third stimulus package […]
Read more
It’s more critical than ever to make sure your business has a stable foundation. Businesses must be able to adjust to unforeseen circumstances and keep a solid financial footing through hard times. Here are 4 ways a PEO can help your business have more financial stability and weather trying times: PEO + OVERALL COST SAVINGS […]
Read more
After months of stalemate, a second COVID-19 relief package has been passed. On Sunday, Dec. 27, 2020, the president signed a $900 billion COVID-19 relief bill to help Americans through the ongoing pandemic. It is part of a larger package to keep the federal government funded through the current fiscal year. Our teams are digesting the details […]
Read more
We recently reported that President Trump signed an executive order and three memoranda for COVID relief. With no interference thus far from Congress, those orders are scheduled to become active September 1.  One of the memoranda we are most frequently asked about is the “payroll tax holiday.” This provision gives employers the option to let employees […]
Read more
In an ever-changing world, we know it can be a challenge to keep up with what’s new, especially when it comes to your business.  That’s why we want to make sure you understand the recently passed proclamation that impacts work visas. On June 22, 2020, President Trump issued a proclamation that extends the restrictions from […]
Read more
Please visit our COVID-19 resources page with more information for business owners and employees. The U.S. Department of Treasury and Small Business Administration (SBA) updated the Paycheck Protection Program (PPP) Loan Forgiveness application. Not only did the Treasury and SBA simplify the full loan forgiveness application, they also released a new EZ Forgiveness Application for […]
Read more
Employers are now prohibited from discriminating against LGBTQ+ employees On June 15, 2020, the U.S. Supreme Court ruled employment discrimination on the basis of a worker’s sexual orientation or gender identity is illegal under Title VII of the Civil Rights Act of 1964.  It is already illegal for employers to discriminate on the basis of […]
Read more
Please visit our COVID-19 resources page with more information for business owners and employees. Updates from the U.S. Department of Treasury and SBA. On June 10, 2020, the U.S. Department of Treasury and Small Business Administration (SBA) released additional guidance to provide clarity on the recently passed Paycheck Protection Program Flexibility Act (PPPFA). Here are […]
Read more
Recent events have brought discussions of diversity and inclusion, particularly around race, to the forefront. While we don’t have all of the answers, we do have some that may be useful to you within your own companies.  Q: What is the difference between diversity and inclusion? A: Diversity can include race, ethnicity, gender identity, age, […]
Read more
Listening, learning, and hoping you are too. Blackout Tuesday highlighted, especially for those with privilege, the importance of listening. At Nextep, we stand against injustice and do not tolerate racism in any form. At the same time, we’re learning and have work to do.  We recognize that in the U.S. today, no one is naturally […]
Read more
On June 5, 2020, the president signed H.R. 7010, the Paycheck Protection Program Flexibility Act, into law. This law clarifies terms of the PPP loan, eligibility, and loan forgiveness. Highlights include: Expanded repayment period There is now an expanded, five-year repayment period for the PPP loan for those who did not receive loan forgiveness, an […]
Read more

Download Our App