Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Incident Response

Minnesota Department of Human Services Reports Data Breach

The Minnesota Department of Human Services says a data breach potentially exposed personal information on up to 3,000 people.

The Minnesota Department of Human Services says a data breach potentially exposed personal information on up to 3,000 people.

Commissioner Tony Lourey tells legislative leaders it happened Sept. 28 when an employee fell for a phishing scam and clicked on a malicious link that caused the employee’s email account to send spam.

Lourey says technicians could not identify what, if any personal information might have been accessed. But the compromised account contained data on DHS employees and clients, including names, dates of birth, phone numbers, emails and information on child protection cases. It also held Social Security and driver’s license numbers and financial data on about 30 people.

Letters started going out to the affected individuals Wednesday.

Around 21,000 Minnesotans were affected by a breach at the department last year.

Written By

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

SecurityWeek’s Threat Detection and Incident Response Summit brings together security practitioners from around the world to share war stories on breaches, APT attacks and threat intelligence.

Register

Securityweek’s CISO Forum will address issues and challenges that are top of mind for today’s security leaders and what the future looks like as chief defenders of the enterprise.

Register

Expert Insights

Related Content

Cybercrime

A recently disclosed vBulletin vulnerability, which had a zero-day status for roughly two days last week, was exploited in a hacker attack targeting the...

Data Breaches

LastPass DevOp engineer's home computer hacked and implanted with keylogging malware as part of a sustained cyberattack that exfiltrated corporate data from the cloud...

Application Security

GitHub this week announced the revocation of three certificates used for the GitHub Desktop and Atom applications.

Data Breaches

GoTo said an unidentified threat actor stole encrypted backups and an encryption key for a portion of that data during a 2022 breach.

Incident Response

Microsoft has rolled out a preview version of Security Copilot, a ChatGPT-powered tool to help organizations automate cybersecurity tasks.

Incident Response

Meta has developed a ten-phase cyber kill chain model that it believes will be more inclusive and more effective than the existing range of...

Artificial Intelligence

Two new surveys stress the need for automation and AI – but one survey raises the additional specter of the growing use of bring...

Application Security

Password management firm LastPass says the hackers behind an August data breach stole a massive stash of customer data, including password vault data that...