Incident Response

Minnesota Department of Human Services Reports Data Breach

The Minnesota Department of Human Services says a data breach potentially exposed personal information on up to 3,000 people.

Associated Press

January 31, 2019

The Minnesota Department of Human Services says a data breach potentially exposed personal information on up to 3,000 people.

Commissioner Tony Lourey tells legislative leaders it happened Sept. 28 when an employee fell for a phishing scam and clicked on a malicious link that caused the employee’s email account to send spam.

Lourey says technicians could not identify what, if any personal information might have been accessed. But the compromised account contained data on DHS employees and clients, including names, dates of birth, phone numbers, emails and information on child protection cases. It also held Social Security and driver’s license numbers and financial data on about 30 people.

Letters started going out to the affected individuals Wednesday.

Around 21,000 Minnesotans were affected by a breach at the department last year.

Written By Associated Press

Latest News

Click to comment

Virtual Event: Threat Detection and Incident Response Summit

Wednesday, May 24, 2023

SecurityWeek’s Threat Detection and Incident Response Summit brings together security practitioners from around the world to share war stories on breaches, APT attacks and threat intelligence.

Virtual Event: CISO Forum Virtual Summit

June 13-14, 2023

Securityweek’s CISO Forum will address issues and challenges that are top of mind for today’s security leaders and what the future looks like as chief defenders of the enterprise.

Consolidate Vendors and Products for Better Security

Instead of deploying new point products, CISOs should consider sourcing technologies from vendors that develop products designed to work together as part of a platform. (John Maddison)

Stay Focused on What’s Important

Staying the course and sticking to strategic goals allows security professionals to steadily and continually improve the security posture of their organization. (Joshua Goldfarb)

What If the Current AI Hype Is a Dead End?

If we should face a Dead-End AI future, the cybersecurity industry will continue to rely heavily on traditional approaches, especially human-driven ones. It won’t quite be business as usual though. (Oliver Rochford)

Breaking Enterprise Silos and Improving Protection

When teams have a way to break down enterprise silos and see and understand what is happening, they can improve protection across their increasingly dispersed and diverse environment. (Matt Wilson)

Security Pros: Before You Do Anything, Understand Your Threat Landscape

Regardless of the use case your security organization is focused on, you’ll likely waste time and resources and make poor decisions if you don’t start with understanding your threat landscape. (Marc Solomon)

Cybercrime

Comodo Forums Hacked via Recently Disclosed vBulletin Vulnerability

A recently disclosed vBulletin vulnerability, which had a zero-day status for roughly two days last week, was exploited in a hacker attack targeting the...

Eduard KovacsOctober 1, 2019

Hackers Stole Encrypted Backups, MFA Settings from GoTo, LastPass

Data Breaches

LastPass Says DevOps Engineer Home Computer Hacked

LastPass DevOp engineer's home computer hacked and implanted with keylogging malware as part of a sustained cyberattack that exfiltrated corporate data from the cloud...

Ryan NaraineFebruary 27, 2023

Application Security

GitHub Revokes Code Signing Certificates Following Cyberattack

GitHub this week announced the revocation of three certificates used for the GitHub Desktop and Atom applications.

Ionut ArghireJanuary 31, 2023

Data Breaches

GoTo Says Hackers Stole Encrypted Backups, MFA Settings

GoTo said an unidentified threat actor stole encrypted backups and an encryption key for a portion of that data during a 2022 breach.

Ryan NaraineJanuary 24, 2023

Incident Response

Microsoft Puts ChatGPT to Work on Automating Cybersecurity

Microsoft has rolled out a preview version of Security Copilot, a ChatGPT-powered tool to help organizations automate cybersecurity tasks.

Ryan NaraineMarch 28, 2023

Incident Response

Meta Develops New Kill Chain Thesis

Meta has developed a ten-phase cyber kill chain model that it believes will be more inclusive and more effective than the existing range of...

Kevin TownsendMarch 16, 2023

Artificial Intelligence

ChatGPT and the Growing Threat of Bring Your Own AI to the SOC

Two new surveys stress the need for automation and AI – but one survey raises the additional specter of the growing use of bring...

Kevin TownsendMarch 14, 2023

Application Security

LastPass Says Password Vault Data Stolen in Data Breach

Password management firm LastPass says the hackers behind an August data breach stole a massive stash of customer data, including password vault data that...

Ryan NaraineDecember 22, 2022

SECURITYWEEK NETWORK:

ICS:

SecurityWeek

Incident Response

Minnesota Department of Human Services Reports Data Breach

More from Associated Press

Latest News

Virtual Event: Threat Detection and Incident Response Summit

Virtual Event: CISO Forum Virtual Summit

Expert Insights

Consolidate Vendors and Products for Better Security

Stay Focused on What’s Important

What If the Current AI Hype Is a Dead End?

Breaking Enterprise Silos and Improving Protection

Security Pros: Before You Do Anything, Understand Your Threat Landscape

Related Content

Cybercrime

Comodo Forums Hacked via Recently Disclosed vBulletin Vulnerability

Data Breaches

LastPass Says DevOps Engineer Home Computer Hacked

Application Security

GitHub Revokes Code Signing Certificates Following Cyberattack

Data Breaches

GoTo Says Hackers Stole Encrypted Backups, MFA Settings

Incident Response

Microsoft Puts ChatGPT to Work on Automating Cybersecurity

Incident Response

Meta Develops New Kill Chain Thesis

Artificial Intelligence

ChatGPT and the Growing Threat of Bring Your Own AI to the SOC

Application Security

LastPass Says Password Vault Data Stolen in Data Breach

SECURITYWEEK NETWORK:

ICS:

More from Associated Press

Latest News

Trending

Daily Briefing Newsletter

Virtual Event: Threat Detection and Incident Response Summit

Virtual Event: CISO Forum Virtual Summit

Expert Insights

Consolidate Vendors and Products for Better Security

Stay Focused on What’s Important

What If the Current AI Hype Is a Dead End?

Breaking Enterprise Silos and Improving Protection

Security Pros: Before You Do Anything, Understand Your Threat Landscape

Related Content

Cybercrime

Comodo Forums Hacked via Recently Disclosed vBulletin Vulnerability

Data Breaches

LastPass Says DevOps Engineer Home Computer Hacked

Application Security

GitHub Revokes Code Signing Certificates Following Cyberattack

Data Breaches

GoTo Says Hackers Stole Encrypted Backups, MFA Settings

Incident Response

Microsoft Puts ChatGPT to Work on Automating Cybersecurity

Incident Response

Meta Develops New Kill Chain Thesis

Artificial Intelligence

ChatGPT and the Growing Threat of Bring Your Own AI to the SOC

Application Security

LastPass Says Password Vault Data Stolen in Data Breach