According to sources, City of Tucson (a Government organization in Arizona) was hit with a cyber attack. It was first reported on 2022-10-05.
Source 1 | 2022-10-05
“The City of Tucson, Arizona, has disclosed a data breach affecting the personal information of more than 125,000 individuals. As revealed in a notice of data breach sent to affected people, an attacker breached the city's network and exfiltrated an undisclosed number of files containing sensitive information.“
“The City began notifying potentially impacted individuals on September 23 that, among the sensitive personal information exposed during the incident, the attacker could have accessed the affected individuals' names and Social Security numbers. "On September 12, this review concluded, and the review determined that the information at issue included certain personal information," the City revealed in a separate announcement on its official website. “
“Notification letters sent to affected individuals also reveal no evidence was found that this personal info has been misused until now. Those impacted by the data breach are advised to monitor their credit reports for any suspicious activity that could hint at incidents of identity theft and fraud involving their personal information. The City is providing impacted individuals with 12 months of free access to Experian credit monitoring and identity protection services, as well as guidance on defending against identity theft.“
“The data breach occurred after the former head of Tucson’s IT department Colin Boyce resigned. Lusk said interim directors took charge of managing the data breach, and new Chief Information Officer Christopher Mazzarella came on board early to aid in the efforts.“
Source 2 | 2022-10-12
“The city of Tucson has reported a data breach that put more than 123,500 individuals’ personal information at risk for fraudulent use. The potentially stolen data includes individuals’ names, Social Security numbers, driver’s license or state identification numbers and passport numbers, the city says.“
“According to Principal Assistant City Attorney Roi Lusk, the city detected suspicious activity May 29 when someone hacked into a user’s account and may have copied data from the city’s network.“
“The city shut down its website and online services for two days after discovering the activity “to make sure that no additional information can be taken or any additional harm can be done,” Lusk said.“
Guarding Against Data Breaches
Cybersecurity for Critical Infrastructure
SecuLore provides Managed Detection and Response (MDR) to protect our nation’s critical infrastructure from cyber threats. Our expertise is built on deep knowledge of 9-1-1 technology, cyberwarfare, and ethical hacking, ensuring the highest level of cybersecurity for public safety agencies.
