North Dakota’s Workforce Security & Insurance coverage company was struck by a cyberattack in June that concerned private knowledge.
Proof signifies the attacker gained entry to non-public data of 182 injured employees in a WSI worker’s electronic mail account.
The worker had observed uncommon exercise on the pc after opening an electronic mail attachment. WSI’s assist desk responded.
The pc was secured and faraway from the state community. The state Data Expertise Division and its Cyber Evaluation and Response crew just lately completed a forensic evaluation of the pc.
That evaluation concluded {that a} “subtle phishing assault” was remoted to the one pc and did not unfold onto the state community.
However the evaluation additionally discovered proof the attacker gained entry to the private knowledge via the e-mail attachment containing malicious code.
Individuals are additionally studying…
WSI notified folks affected by the assault to supply data and supply identification theft safety companies.
Extra data is at bit.ly/WSICyber.