Number of victims in state of Utah breach significantly rises

The state of Utah lost the personal information of at least 500,000 people because:

Attackers were able to compromise the server because an authorization component was not configured properly.

The state’s Department of Technology Services “has processes in place to ensure the state’s data is secured, but this particular server was not configured according to normal procedure.” The agency plans to bolster its controls with additional networking monitoring and intrusion detection functionality.

Hopefully they’ll add some auditors, too.  It’s a shame to have your system set up so you only find out about misconfigurations after outsiders do.

via Number of victims in state of Utah breach significantly rises – SC Magazine.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s