Millions of social security numbers accessed in Kansas agency data breach

Ccleaner
In today’s always-connected world, it’s impossible to do much business without entering your personal information in one computer system or another. That means that private data, often including social security numbers, is only safe as long as all of those systems remain secure — and even state government systems aren’t always safe. If you’ve been looking for a job via a Kansas Department of Commerce employment service, then you’re suddenly well aware of how it feels to see hackers steal your private data when there’s nothing you can do about it.

The news comes via KCUR, which as a member of the Kansas News Service requested and received information on a recent hack of a system operated by America’s Job Link Alliance-TS (AJLA-TS), a division of the Kansas Department of Commerce. The service allows people to post résumés and conduct job searches at sites like Kansasworks.com, and it also manages data for a total of 16 states including Kansas.

A total of almost 6.5 million records were hacked, and of those, 5.5 million from 10 states included social security numbers (SSNs), one of the most sensitive data types to which a hacker can gain access. According to the records obtained by the Kansas News Service, about half a million of the hacked accounts with SSNs were held by individuals located in Kansas.

The following states were affected:

  • Arkansas: 597,734 SSNs
  • Arizona: 896,370 SSNs
  • Delaware: 236,134 SSNs
  • Idaho: 170,517 SSNs
  • Kansas: 563,568 SSNs
  • Maine: 283,449 SSNs
  • Oklahoma: 430,679 SSNs
  • Vermont: 183,153 SSNs
  • Alabama: 1,393,109 SSNs
  • Illinois: 807,450 SSNs

The breach was first suspected on March 12, 2017 and then verified on March 14. The FBI was notified of the breach on March 15, and since then AJLA-TS has been soliciting assistance from a variety of third-party IT forensic analysis companies. The good news is that the exploit used by the hackers to gain access to the accounts has been identified and fixed and the affected accounts precisely identified.

The state of Kansas is now paying three firms at least $235,000 for various services through the end of 2017. The costs of the breach will also rise significantly as the state will also pay for a year of credit monitoring for most of the victims, specifically those located in nine of the 10 states with victims affected by the breach. Victims in Delaware will receive three years of credit monitoring service due to contractual obligations.

So far, the Kansas Department of Commerce has sent 260,000 emails informing victims of the breach, but many hundreds of thousands have not yet been notified due to a lack of email addresses. Because Kansas law does not stipulate regular mail or telephone notification, it’s unclear if other victims will be notified. If you fear that your data might have been compromised, then you can contact a call center established for victims at 844-469-3939.

Smart Home

Ring, Amazon’s smart doorbell maker, explores technology that alerts police

Smart doorbells have been using facial-recognition technology to mark friends and family but a pair of patents filed by Ring could lead to doorbells that automatically identify suspicious persons and notify police.
Computing

Lost your router? Here's how to find its IP address to help track it down

Changing the login information for your router isn't always easy, that's why so many have that little card on the back. But in order to use it, you need to know where to go. Here's how to find the IP address of your router.
Computing

Latest Facebook bug exposed up to 6.8 million users’ private photos

An API bug recently left an impact on Facebook users. Though the issue has since been fixed, some of the apps on the platform had a wrongful access to consumers photos for 12 days between September 13 and September 25. 
Computing

These are the worst passwords of 2018. Is yours on this list?

Do you use a bad password that makes your online accounts easy to break into? SplashData has compiled a list of the top 100 worst passwords for 2018 and there are quite a few listings that were carryovers from prior lists.
Computing

Secure your Excel documents with a password by following these quick steps

Excel documents are used by people and businesses all over the world. Given how often they contain sensitive information, it makes sense to keep them from the wrong eyes. Thankfully, it's easy to secure them with a password.
Computing

Which Macs are compatible with MacOS Mojave?

Is your computer ready for Apple's big Mojave update? Here's what you need to know about MacOS Mojave compatibility, what Macs can successful download Mojave, and the requirements you need to know about.
Emerging Tech

Awesome Tech You Can’t Buy Yet: Booze-filled ski poles and crypto piggy banks

Check out our roundup of the best new crowdfunding projects and product announcements that hit the web this week. You may not be able to buy this stuff yet, but it sure is fun to gawk!
Computing

Change your mouse cursor in Windows with these quick tips

The standard mouse cursor is boring, so change it! With this guide on how to change your mouse cursor in Windows, you can choose to use one of Microsoft's pre-installed cursors or download something a bit more extravagant.
Gaming

The DualShock 4 is one of the best controllers ever, and you can use it with a PC

Sony's new DualShock 4 controller has become a fan favorite, and some people want to use it with a PC. Here's how to connect your DualShock 4 and start using it, either with an official adapter, or unofficial software.
Computing

MacBook Pro battery replacement: Everything you need to know

Looking for a new battery for your MacBook Pro? It's important you know what to look for, what model you have, and what options Apple gives you! We'll cover everything you need to know about Apple MacBook Pro battery replacement.
Computing

Acer Swift 7 vs. Apple MacBook Air

The Acer Swift 7 accomplishes its goal of being the world's thinnest notebook, and it's well-built to boot. But is that enough to take on the Apple MacBook Air in terms of being the better to actually use?
Computing

Asus ZenBook 14 UX433 vs. Dell XPS 13

The Asus ZenBook 14 UX433 has some incredibly tiny display bezels, in an effort to jam a 14-inch notebook into a 13-inch chassis. That pits it against the Dell XPS 13, the icon of small clamshells.
Computing

Intel’s 28-core monster Xeon CPU might cost upwards of $4,000

Intel's new-generation 28-core Xeon CPU will debut with a hefty price tag. Although not quite as expensive as some of its predecessors, early pre-order pricing has it costing between $4,000 and $5,000.
Computing

Lenovo’s first ThinkPads with Intel Whiskey Lake processors to arrive this month

Lenovo has opted not to wait for CES 2019 next month to introduce the first ThinkPads with Intel's Whiskey Lake Core I5-8265U and Core i7-8565U processors. They will arrive onboard the new ThinkPad L390 and L390 Yoga.