Oregon’s DHS hit by a massive phishing attack, 645K compromised accounts

to connectVideoFox News Flash, important news, June 20,

Fox News Flash, important news, 20 June, here. Check out what to click on

How to open a fraudulent e-mail can wreak havoc, such as a recent incident in Oregon, in the show.

This week, the Oregon Department of Human Services (DHS) notified approximately 645,000 customers that their personal information is compromised as a result of a phishing email breach.

Phishing consists of sending fraudulent e-mails masquerading as a trustworthy entity to steal sensitive information such as passwords and credit card information. The e-mail usually directs you to a bogus web site that looks legitimate.


The e-mail has been sent to the Oregon DHS staff on Aug. 8, 2019 at the latest. Nine of the employees opened the email and clicked on a link that will allow the sender to gain access to their e-mail accounts. The next day, the nine employees of the problems, according to the Oregon DHS, and the value in use.

Jan. 28, 2019, with access to nine of the affected accounts have been terminated, if for a cyber security team to confirm that the phishing incident was a breach of the security, (DHS) have been added.

The results were subjected to data usually are out in the e-mail attachments that contained the names, addresses, dates of birth, social security numbers, numbers, personal information and any other information that may be used in the DHS programs, the department said.

On the 21st of March 2019 at the latest, the public was told. The department also sent notice to the national credit reporting agencies-TransUnion, Experian and Equifax.

“The scale of the breach, it is surprising, in view of the fact that it took place with only nine of a successful phishing e-mail,” Willy Leichter, senior VP at Virsec, told Fox News in a written statement.

“A lot of organisations still rely on the common sense of the user not to click on any phishing attempts, but that’s totally inadequate,” Leichter added.

The one thing that stands out most, in this case, the 19-day delay between the detection of the phishing attacks and the shutting down of the e-mail accounts, Colin Bastable, the chief executive of Lucy, to Safety, told Fox News in a written statement.

“They were using the e-mail and data storage system. Why are the transmission and storage of confidential documents such as concurrent attachments to you via e-mail.” Bastable said.

“The technology, processes, and policies are in place to prevent this kind of breach,” according to Bastable, adding that “health care is a highly targeted industries, hacking and phishing attacks, as the security is poor, and the data is very valuable.”

Harvested data is being sold, repacked and resold multiple times on the Dark Web. “The 645,000 Oregonians and their families and friends, will be adversely affected, and trouble in one way or another, for years to come,” Bastable pointed out.

The Oregon DHS is providing 12 months of identity theft monitoring and recovery services to the affected people. It also has a $1-million for the refund of the insurance policy.


Follow us

Don't be shy, get in touch. We love meeting interesting people and making new friends.

Most popular