A vulnerability in the Oregon Employment Department’s WorkSource Oregon Management Information System may have led to the compromise of 851,322 data records.
Following an anonymous tip about the existence of the vulnerability, they reacted by taking down the system on Monday in order to patch it. The system is now back online, and has been “reinforced.”
The department is now working with law enforcement officials to mount an investigation to see if the vulnerability had been exploited to harvest user data. Typical data included names, address, social security numbers and typical job application information.
According to FOX 12, the investigation revealed that of the 1.9 million people who registered, a little over 850,000 might have been affected.
VIEW FULL STORY