RSS

Category: Government (State)

Security Experts Urge State Governments To Up Cyber Security Measures

Posted March 1, 2013 by TeamSHATTER Admin in Attack Vectors, Data Breach, Database Security, Government (State), Hacker News with 0 comments
USA Flag2

The email sent to several thousand of state employees in early February looked official. It featured the state logo and a familiar warning that email access was about to be cut off because the employee’s inbox was too full. The email invited employees to click on a link to solve the problem. If an employee clicked, a screen popped up asking for more data, including the employee’s name, login and password. It was a classic spear-fishing exploit with the hacker’s…

Click for complete article >>

South Carolina Agencies Still Working On Security Improvements

Posted January 7, 2013 by TeamSHATTER Admin in Data Breach, Database Security, Government (State) with 0 comments
lock

Months after a foreign hacker broke into the South Carolina Department of Revenue’s computer system exposing millions of taxpayers’ personal records and causing the state to spend $20 million for added protection, state cabinet agencies are still working on security improvements, an examination by GreenvilleOnline.com show. Just one of South Carolina Gov. Nikki Haley’s 15 cabinet agencies questioned by the website — the Department of Probation, Pardons and Parole — responded without qualifications that it had the full basic protections…

Click for complete article >>

Top Federal And Local Government Data Breaches Of 2012

Posted November 29, 2012 by TeamSHATTER Admin in Data Breach, Database Security, Government (Federal), Government (State) with 0 comments
flag

With federal and local government agencies suffering the brunt of Anonymous protests, targeted phishing attacks leading to privilege escalation, and highly effective SQL injection attacks granting wide-scale access to information, citizen privacy definitely took a hit in 2012. 1. South Carolina More than 3.3 million unencrypted bank account numbers and 3.8 million tax returns were stolen in a wide-ranging attack against the South Carolina Department of Revenue that all started through a state employee falling for a phishing attack that…

Click for complete article >>

South Carolina Department Of Revenue Databases Breached Via Two Different Paths

Posted November 7, 2012 by TeamSHATTER Admin in Attack Vectors, Data Breach, Database Security, Government (State), Hacker News with 0 comments
maze

The hacker who reportedly accessed millions of South Carolina tax returns apparently breached state databases via two different paths, according to an official with an information-security firm hired by the state. Marshall Heilman of Mandiant said the attacker tricked a user in the Department of Revenue’s system into opening a file that then allowed the hacker to access the system, according to a report Wednesday from the Post and Courier of Charleston. Click for complete article >>

Click for complete article >>

South Carolina Department Of Revenue Hacked, 3.6 Million Social Security Numbers Breached

Posted October 31, 2012 by TeamSHATTER Admin in Data Breach, Database Security, Government (State), Hacker News with 1 comment
SSN

The disclosure on Friday that data thieves pilfered millions of South Carolinians’ Social Security numbers from the state’s Department of Revenue is the latest evidence that hackers are continuing an onslaught against companies and agencies that increase their web presence without fully appreciating security risks. State officials confirmed that the South Carolina Department of Revenue’s website was hacked some five times from late-August to mid-October. The intruders took 3.6 million Social Security numbers and 387,000 payment card records. None of…

Click for complete article >>

State Of Utah Extends Deadline For Free Credit Monitoring For Breach Victims

Posted September 12, 2012 by TeamSHATTER Admin in Breach Costs, Data Breach, Database Security, Government (State) with 0 comments
ss

Utahns whose Social Security numbers were compromised last March when hackers broke into a poorly protected state server now have until Sept. 30 to register for free credit monitoring. The Utah Department of Health extended the deadline hoping to reach a greater share of breach victims. State officials have mailed letters, fielded questions on a 24-hour hotline and criss-crossed the state in an effort to alert the 780,000 Utahns whose personal information was put at risk. Of those, 255,000 had…

Click for complete article >>

Alaska DHSS Fined $1.7M Over Data Breach

money3

The Alaska Department of Health and Social Services (DHSS) – the state’s Medicaid agency – has agreed to pay $1.7 million to the U.S. Department of Health and Human Services (HHS) to settle possible violations of the HIPAA Security Rule, making it the second largest settlement for HIPAA violations to date. As part of the settlement, the state has also agreed to take corrective action to properly safeguard the electronic personal health information (PHI) of their Medicaid beneficiaries. Click for…

Click for complete article >>

Utah Governor Fires Tech Director, Brings In Cyber Security Czar

new management

Gov. Gary Herbert apologized to the 780,000 victims of the health data security breach on Tuesday. To restore the public’s trust, he announced Tuesday that he fired Department of Technology Services director Stephen Fletcher and hired an ombudsman to shepherd victims through the process of protecting their identities and credit. “The people of Utah rightly believe that the government will protect them, their families, and their personal data. When they interface with us that is in fact our charge,” Herbert…

Click for complete article >>

Database Breach: Ministry of Labor and Welfare, 9 Million Records Compromised

yield hacker

Personal information of some 9 million Israelis (alive and deceased) has been stolen by a contractor working for the country’s Ministry of Labor and Welfare with the intent of selling it to the highest bidder, reports The Jerusalem Post. The records exfiltrated from the Population Registry contain full names, addresses, dates of birth, identification numbers and even information regarding familial relationships between the individual – information that can be misused in many different (and prevalently harmful) ways. The thief shared…

Click for complete article >>

Palo Alto: Audit Finds Breach – Employee And Customer Information At Risk

Posted October 17, 2011 by TeamSHATTER Admin in Audit, Best Practices, Data Breach, Database Security, Government (State), User Rights with 0 comments
city of palo alto breach

The City of Palo Alto’s business operation had a significant security breach that left sensitive employee and customer information open to outside access, an investigation by the City Auditor’s Office found. According to the audit, which was released this week, the firm SAP failed to secure a “powerful account,” allowing the auditor’s office access to sensitive and confidential information for what the report called an “extended period of time.” The report also found that the Administrative Services Department, which oversees…

Click for complete article >>
Powered by