A Florida Tax Collector’s Place of work has blamed malware uncovered on an employee’s personal computer for a knowledge breach that impacted about 450,000 residents of Polk County.
The breach happened in June at the Tax Collector’s Business office for Polk County (TCPC). Info exposed in the attack integrated Social Security numbers and driver’s license figures.
In a statement issued on July 15, Tax Collector for Polk County Joe Tedder claimed that his workplace was “subject matter to a new pressure of a focused computer virus assault not witnessed in advance of.”
The attack occurred at all-around 2:15 pm on June 23 following an workplace worker clicked on what turned out to be a malicious email attachment disguised as an invoice.
Tedder’s place of work explained that the incident was “rapidly identified” by the IT staff, who “took quick motion to mitigate the danger.” In an try to protect against the virus from spreading, the office’s total laptop or computer procedure was shut down, together with telephones, on the web processing, and support center functions.
Subsequent the assault, all of the office’s PCs have been wiped clean up and restored and 3rd-bash computer forensic specialists had been introduced in to identify the scope of the incident.
A subsequent forensic investigation concluded on July 11 concluded that driver’s license quantities experienced most likely been obtainable to an nameless third party.
The investigation uncovered no proof that own information and facts was subject matter to real or attempted misuse.
“We believe that exposure was pretty constrained,” Tedder told WFLA.
Tedder’s business mentioned: “Despite the fact that the investigation discovered no proof that any info was misused, people today are inspired to continue being vigilant in opposition to incidents of identification theft by reviewing account statements for strange activity or problems.”
As soon as the compromised computer system program was again up and managing, it was decided that no entry experienced been missing as a result of the attack.
“The Tax Collector’s Workplace is at present in a position to report that we did not reduce access to our programs, backups, or other operational information,” stated the TCPC.
“On the other hand, in an abundance of caution to tackle this new pressure of laptop virus, TCPC has executed more safeguards to additional protected procedure data.”