Data from more than 100,000 Alaskan households exposed in data breach
January 2019 saw a turn of events for the Alaskan government regarding a data breach that affected Alaskan citizens back in June of 2018. Investigations revealed that the breach may have exposed personal information of individuals who interacted with the Division of Public Assistance (DPA). Details such as Medicare billing codes, health bills, Social Security numbers, driver’s license numbers, names, birth dates, phone numbers, and other confidential data were stored in the infected system.
What really happened
On April 26, 2018, a DPA system was infected with a Zeus/Zbot trojan virus resulting in potential breaches of the Health Insurance Portability and Accountability Act (HIPAA) and the Alaska Personal Information Protection Act (APIPA). Initial estimates said that 500 individuals were affected by the breach; however, recent investigations reveal that closer to 100,000 households may be impacted.
Alaska's Department of Health and Social Services (DHSS) sent letters to all households that had applied for programs through the DPA, notifying them of the breach. The DHSS enlisted the help of the Office of Information Technology and the FBI to protect its network from such untoward incidents in the future.
Don't want to make the news for the wrong reasons? Download ManageEngine Log360, the tool that can help combat internal and external security attacks.
How can ManageEngine help with incidents such as this?
Log360, our comprehensive SIEM solution, can help your organization:
- Identify cross-site scripting (XSS) attacks, malicious file installations, DoS attacks, SQL injection, and more with its real-time correlation capability. Alert security teams in real time about events that require their immediate attention, such as account lockouts, security group membership changes, unauthorized access attempts to files or folders, and network attacks.
- Detect unauthorized network access attempts with its built-in STIX/TAXII feeds processor. The tool also has a global IP threat database that can instantly detect known malicious traffic passing through the network as well as outbound connections to malicious domains and callback servers. The global threat database contains over 600 million blacklisted IP addresses that are collected from trusted open sources and updated daily.
- Find potential insider threats with the user behavior analytics engine, which creates a baseline of normal activities that are specific to each user and notifies security personnel instantly when there's any deviation from this norm. Rather than using static threshold values, the tool employs a combination of data analytics and machine learning to define dynamic thresholds based on real-world user behavior.
- Obtain important forensic information about incidents. The collected logs can be securely archived to help prove adherence to compliance standards and reduce potential legal penalties during investigations.
- Automatically raise incidents as tickets to the designated administrator in ServiceDesk Plus, JIRA, Zendesk, Kayako, or ServiceNow to create an incident resolution process that's swift and accountable.
Download a free trial version of Log360 to test these features out yourself.
Latest Ransomware attacks
Latest Data breach attacks
Latest Email Phishing attacks
Latest DoS and DDoS attacks
Latest Brute force attack
Latest Advanced persistent threat (APT)