West Virginia job seekers alerted to government employment agency data breach


Emma Woollacott June 24, 2021 at 13:38 UTC

Updated: June 24, 2021 at 14:54 UTC

WorkForce West Virginia’s MACC database was compromised earlier this year

WorkForce West Virginia revealed that its Mid Atlantic Career Consortium Employment Services (MACC) database was breached earlier this year, but claims it is now secure.

The state government agency oversees West Virginia’s unemployment insurance program and manages workforce development services, including the MACC Job Seeker Database – the largest database online data of job seekers and job listings in the state, the statement said.

Incident

Workforce says that when they learned of the violation on April 13, they immediately took the system offline and investigated. The agency hired a third-party forensic firm to manage ongoing risk mitigation.

No files were downloaded, checked out or manipulated, he says.

However, on May 14, investigators discovered that some personal information stored in the jobseeker database was potentially accessible, including name, address, phone number, date of birth, and contact number. social Security.

The agency did not disclose how many people may have been affected.

Learn about the latest news on data breaches

Workforce contacted everyone whose information could be viewed and gave them the phone number (1-855-537-2138) of a specialized response team within the forensic office. He adds that he has introduced “additional technical guarantees”.

“Mitigating any potential risk to voters continues to be our top priority,” said Scott Adkins, Acting Commissioner of WorkForce West Virginia.

“Voters should follow the instructions provided in the letter they received from WorkForce if they have any questions. “

Ax work

A number of job seeker websites have been hacked over the past year. In Singapore, for example, job search institute e2i revealed in April that the personal data of 30,000 people could have been accessed illegally, following a security breach.

A year earlier, the American job portal Ladders revealed the profiles of 13 million job seekers, thanks to an unprotected AWS Elasticsearch database.

And in an even bigger breach, security firm Cyble discovered last year that the personal data of 29 million job seekers was freely available on the dark web.

The data, Cyble said, appeared to have been collected from a resume aggregation service that collects data from different job portals in India.

READ MORE CDPA: Virginia’s new consumer data protection law heralds the start of another busy year for U.S. privacy lawmakers