Hundreds of Thousands of Job Seekers' Information May Have Been Compromised by Hackers
Network intrusion; Software vulnerability
Hundreds of thousands of job seekers in at least 10 states may have had personal information stolen from a multistate system.
America’s JobLink announced the breach Wednesday, stating a hacker used misconfigured code to potentially access the names, Social Security number and birth dates of job seekers. The company noticed unusual activity March 12, but stopped access March 14.
Ten states’ systems could have been affected: Alabama, Arizona, Arkansas, Delaware, Idaho, Illinois, Kansas, Maine, Oklahoma and Vermont.
America’s JobLink didn’t disclose a number, but various states officials are:
- About 200,000 in Delaware may have been affected, according to The News Journal. The state has contracted with the company since 2007.
- The Oklahoman reports more than 430,000 people who signed up for OKJobMatch.com may have been impacted.
- The Vermont Labor Commissioner told WCAX about 182,000 Vermonters could have been affected.
That’s more than 812,000 people from three of the 10 states. Maine officials don’t have a total yet, but say more than 12,000 of its state residents used the job service since July, according to the Portland Press Herald.
The FBI and cybersecurity firm RSA are investigating.
March 22, 2017
The Topeka Capital-Journal
Link to report
location of breach
location of perpetrators
date breach occurred
date breach detected