[BreachExchange] Data Breach At DHS May Have Compromised Thousands Of Peoples' Information

Terrell Byrd terrell.byrd at riskbasedsecurity.com
Wed Mar 2 09:51:47 EST 2022


https://www.newson6.com/story/621ef17efc6ee6759c5bf815/data-breach-at-dhs-may-have-compromised-thousands-of-peoples-information

A data breach at Oklahoma's Department of Human Services is causing
concerns. DHS said thousands of people with intellectual and developmental
disabilities might have had their information stolen.
Liberty of Oklahoma, which handles an Oklahoma Department of Human Services
wait-list is notifying people of the potential for leaked information after
the breach in December.

"The personal information involved may include name, address, date of
birth, age, phone number, social security number, Oklahoma Client number
which could be Medicaid identification number, and representing person’s
name, address and phone number. The information exposed did not include
assessment information," said Liberty, in a statement.

According to Liberty, "On December 7, 2021, Liberty became aware of a
spoofed email account mimicking the email account of a Liberty employee
working on the Oklahoma Waitlist Program. The spoofed email account
attempted to steal payment owed to Liberty. However, Liberty and OKDHS were
able to prevent any theft from occurring. Upon further investigation and a
review of the spoofed email account, Liberty discovered that an unknown,
unauthorized third party (“Third Party”) accessed a Liberty employee’s
email account (“Affected Account”) and may have been able to access certain
emails and documents stored within the Affected Account, including an
unencrypted spreadsheet containing the personal information of individuals
participating in the Oklahoma Waitlist Program that was sent as an
attachment to the account. On December 8, 2021, Liberty immediately
disabled the Affected Account after learning about the Third Party’s
unauthorized access."
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.riskbasedsecurity.com/pipermail/breachexchange/attachments/20220302/3d468082/attachment.html>


More information about the BreachExchange mailing list