Tens of thousands of current and former employees of a leading US cybersecurity and nuclear research laboratory were impacted by a major data breach discovered in November, it has been revealed.
The Idaho National Laboratory (INL) said in an updated notice published this week that it first became aware of the incident on November 20. The lab claimed that it did not impact its own network or databases, but rather its Oracle HCM system, which “resides outside the lab and supports certain INL Human Resources applications.”
The breach impacted current and former employees – including interns, graduate fellows and post-doctorate researchers – as well as retirees and dependents and spouses. Only INL employees who began after June 1 2023 are not affected, it said.
The lab revealed that some individuals employed by the Idaho Cleanup Project (ICP) between 2005 until mid-2006 may also have had their personal data compromised.
Read more on INL: US Cybersecurity Lab Suffers Major Data Breach.
The Office of the Maine Attorney General confirmed that 45,047 individuals were affected by the breach.
A breach notification letter published by the OAG confirmed that the incident took place on November 19, and that the hackers got their hands on a treasure trove of information.
“We can confirm that multiple forms of sensitive personally identifiable information (PII) including names, social security numbers, salary information and banking details were exposed for many individuals,” it explained.
“Some individuals only had their names and dates of birth compromised. The compromised information contained payroll data for employees, former employees, and retirees t ..
Support the originator by clicking the read the rest link below.
