Around 125,000 individuals from the City of Tucson, Arizona are believed to be affected after it was revealed that the city became a victim of a data breach. Between May 17th and May 31st, threat actors gained access to the city’s servers and were able to withdraw an unknown number of files. Within those files were names, Social Security numbers, driver’s license numbers or state ID numbers, and passport numbers. This unfortunate incident was discovered by the city on August 4th, which prompted an investigation. Notification letters were sent to affected individuals on September 23rd. At this time, no evidence of misuse has been found, but since data was exfiltrated, that is likely to change. The City of Tucson stated, “As part of its ongoing commitment to the security of information within its care, the City reviewing its existing policies and procedures regarding cybersecurity and evaluating additional measures and safeguards to protect against this type of event in the future.”
Analyst Notes
Any impacted individuals should take advantage of the free credit and identity monitoring that is being provided via Experian. Moving forward, those that were affected should be aware of the increased chance of identity theft and fraud. If any suspicious activity is noticed, it should be reported to the authorities, credit bureaus, and the Social Security Administration as soon as possible.
https://www.bleepingcomputer.com/news/security/city-of-tucson-discloses-data-breach-affecting-over-125-000-people/?&web_view=true
