The Oregon Employment Department said that it has managed to identify and prevent a breach into its website. They got a tip from an anonymous source about an alleged vulnerability found in the WorkSource Oregon Management Information System. It is an app that allows users to look for work and other services.
Officials of the agency said that the system doesn’t have any impact on those getting unemployment benefit claims. It only affected people who used WorkSource Oregon to find a job. They said that it is their priority to secure the personal data, whether it has already been compromised or not.
The Oregon Employment Department started working Monday morning to validate the information given by the anonymous tip. They did this in coordination with the Chief Information Office. Once they have validated the data, they turned off the WOMIS in order to correct the vulnerability to prevent the retrieval of social security information.
The agency also secured the personal data in t heir system to prevent further breaches. The system came online once again after they made sure that the servers were more secure. The agency’s website is now online with the improved WOMIS system.
Their second priority is to find out whose personal information was compromised. They will also start a criminal investigation to determine who breached the system. They still don’t know if any criminal activity has taken place.
Governor Kitzhaber told the agency to contact law enforcement. The Oregon Employment Department will notify the customers who used the WOMIS. The agency worked with law enforcement to find out whether criminal activity happened. They will keep the media and the public informed as they find new information about the vulnerability.
The Oregon Employment Department has established a dedicated hotline for inquiries about the issue. They are available during work times to answer all concerns about the discovered vulnerability.