TRENDING:

Oregon Employment Dept. Reports Breach

850,000 Who Registered for Job Search Help May Be Affected Jeffrey Roman (gen_sec) • October 14, 2014    
Oregon Employment Dept. Reports Breach

The Oregon Employment Department says an unauthorized intrusion into the agency's website may have exposed information on approximately 850,000 individuals who registered for job search help and other services.

See Also: JavaScript and Blockchain: Technologies You Can't Ignore

On Oct. 6, the agency responded to an anonymous tip alleging a security vulnerability in the WorkSource Oregon Management Information System, the department says. The agency immediately coordinated with the state's chief information office to confirm the tip's validity.

Once validated, the system in question was shut down while steps were taken to address the security vulnerability - the lack of encryption on an older system, says Craig Spivey, a department spokesman.

Information that may have been compromised includes names, addresses and, in some cases, Social Security numbers. The department is notifying impacted individuals, who are being offered free identity protection services for one year, Spivey says.

The department is also asking individuals who used the WorkSource system to reselect and answer security questions and reset their passwords when logging into their account. "As security breaches are unfortunately becoming more common both in the public and private sectors, experts advise that it is also good practice to regularly change security questions for other accounts outside of the WOMIS system," the department says in an Oct. 13 statement.

A criminal investigation has been initiated; the department says it's still unclear whether criminal activity has taken place. The department is cooperating with law enforcement on the investigation.

Previous
Russians Suspected in Ukraine Hack
Next
Were Dropbox Passwords Hacked?

About the Author

Jeffrey Roman

Jeffrey Roman

News Writer, ISMG

Roman is the former News Writer for Information Security Media Group. Having worked for multiple publications at The College of New Jersey, including the College's newspaper "The Signal" and alumni magazine, Roman has experience in journalism, copy editing and communications.



Around the Network

David Derigiotis on the Complex World of Cyber Insurance
David Derigiotis on the Complex World of Cyber Insurance
Are We Doomed? Not If We Focus on Cyber Resilience
Are We Doomed? Not If We Focus on Cyber Resilience
How 2U Inc. Is Fortifying Its Systems and Solutions Designs
How 2U Inc. Is Fortifying Its Systems and Solutions Designs
Securing the SaaS Layer
Securing the SaaS Layer
Protecting the Hidden Layer in Neural Networks
Protecting the Hidden Layer in Neural Networks
Showing Evidence of 'Recognized Security Practices'
Showing Evidence of 'Recognized Security Practices'
The Persisting Risks Posed by Legacy Medical Devices
The Persisting Risks Posed by Legacy Medical Devices
Whistleblowing Brings Visibility to the Role of CISOs
Whistleblowing Brings Visibility to the Role of CISOs
Craig Box of ARMO on Kubernetes and Complexity
Craig Box of ARMO on Kubernetes and Complexity
Organization-Wide Passwordless Orchestration
Organization-Wide Passwordless Orchestration

Continue »

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing databreachtoday.com, you agree to our use of cookies.