• Menu
  • Skip to main content
  • Skip to primary sidebar

The Cyber Security News

Latest Cyber Security News

Header Right

  • Latest News
  • Vulnerabilities
  • Cloud Services
Cyber Security News

CFPB Employee Sends 256,000 Consumers’ Data to Personal Email

You are here: Home / General Cyber Security News / CFPB Employee Sends 256,000 Consumers’ Data to Personal Email
April 21, 2023

An personnel from the US Buyer Economical Defense Bureau (CFPB) has reportedly forwarded private data of approximately 256,000 buyers and confidential supervisory details of around 50 institutions to a own email account.

Congressman Invoice Huizenga dealt with the claims in a letter to CFPB director, Rohit Chopra, dated April 18.

“At the time of your notification, you indicated that the investigation was ongoing. You spelled out that the worker is no for a longer time employed by the agency and that the personnel qualified they deleted each individual email,” reads the missive. “However, numerous thoughts stay unanswered.” 

✔ Approved From Our Partners
AOMEI Backupper Lifetime

Protect and backup your data using AOMEI Backupper. AOMEI Backupper takes secure and encrypted backups from your Windows, hard drives or partitions. With AOMEI Backupper you will never be worried about loosing your data anymore.

Get AOMEI Backupper with 72% discount from an authorized distrinutor of AOMEI: SerialCart® (Limited Offer).

➤ Activate Your Coupon Code


Huizenga also questioned Chopra to deliver a briefing to the committee team by April 25 to support them “better comprehend the mitigation and remediation endeavours,” as effectively as the scale of the breach and attempts manufactured to give the ideal notifications.

“It’s a reduction to see that seemingly this breach has been contained and that the unique that misused the consumer data is now long gone,” commented Pixel Privacy purchaser privacy champion, Chris Hauk. “Hopefully, the CFPB canceled all of that employee’s entry to their devices.”

In accordance to Darren James, senior product supervisor at Specops, nevertheless, it is unclear from the letter irrespective of whether the CFPB has accomplished any subsequent threat intelligence assessment to see if this information has appeared in other places.

Read far more on knowledge breaches here: The LastPass Breaches: Password Managers in the Highlight

“The CFPB has a lesson to discover in this article in dependable data handling,” James reported. “Any teaching finished has failed, and far more emphasis ought to be designed on Cyber Knowledgeable Schooling in the long term to protect against bad security hygiene like this.”

Paul Bischoff, a privacy advocate with Comparitech, echoed James’s point, calling it “embarrassingly ironic” that the CFPB endangered consumers’ information.

“[Still], the breach was contained, and no one’s details appears to be at risk. I think about CFPB workers will be attending a lot of conferences before long about how to effectively deal with information and workplace plan,” Bischoff concluded.

More details about staff schooling is obtainable in this information by Chrystal Taylor, senior technological item advertising and marketing manager at SolarWinds.


Some parts of this article are sourced from:
www.infosecurity-magazine.com

Previous Post: «Cyber Security News Evil Extractor Targets Windows Devices to Steal Sensitive Data
Next Post: CISA Adds 3 Actively Exploited Flaws to KEV Catalog, including Critical PaperCut Bug cisa adds 3 actively exploited flaws to kev catalog, including»

Reader Interactions

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Primary Sidebar

Report This Article

Recent Posts

  • Over 269,000 Websites Infected with JSFireTruck JavaScript Malware in One Month
  • Ransomware Gangs Exploit Unpatched SimpleHelp Flaws to Target Victims with Double Extortion
  • CTEM is the New SOC: Shifting from Monitoring Alerts to Measuring Risk
  • Apple Zero-Click Flaw in Messages Exploited to Spy on Journalists Using Paragon Spyware
  • WordPress Sites Turned Weapon: How VexTrio and Affiliates Run a Global Scam Network
  • New TokenBreak Attack Bypasses AI Moderation with Single-Character Text Changes
  • AI Agents Run on Secret Accounts — Learn How to Secure Them in This Webinar
  • Zero-Click AI Vulnerability Exposes Microsoft 365 Copilot Data Without User Interaction
  • Non-Human Identities: How to Address the Expanding Security Risk
  • ConnectWise to Rotate ScreenConnect Code Signing Certificates Due to Security Risks

Copyright © TheCyberSecurity.News, All Rights Reserved.