OKCPD: Rape victims’ personal information possibly leaked in former contractor data breach

[Terrell Byrd <terrell.byrd () riskbasedsecurity com>]

https://kfor.com/news/local/okcpd-rape-victims-personal-information-possibly-leaked-in-former-contractor-data-breach/

OKLAHOMA CITY (KFOR) – The Oklahoma City Police Department says personal
information of sexual assault victims from rape kit investigations may have
been leaked through a data breach involving a former contractor.

In a statement to KFOR Monday, Oklahoma City Police Department (OKCPD) said
it had recently been made aware that DNA Solutions Inc., which had
performed forensic testing for the department in the past, suffered a
network security incident, involving data from rape kit investigations.

“DNA Solutions Inc. determined that an unauthorized third party accessed
their network and may have compromised certain sensitive personal and
health related information from sexual assault kits sent to them for
forensic testing,” said OKCPD in part, in the emailed statement.

Officials with DNA Solutions said they became aware of the network security
incident on November 18th and took immediate steps to correct it.

They also confirmed that the compromised data did not include personally
identifiable information.

“The data did not include social security numbers, driver’s license
information, or financial information,” said DNA Solutions officials in a
statement. “We have notified individuals or organizations whose data may
have been impacted directly.”

DNA Solutions is providing 12 months of free credit monitoring and identity
theft protection services to those who were impacted and is encouraging
those who receive a letter to enroll.

_______________________________________________
BreachExchange mailing list sponsored by Risk Based Security
BreachExchange () lists riskbasedsecurity com

If you wish to Edit your membership or Unsubscribe you can do so at the following link:
https://lists.riskbasedsecurity.com/listinfo/breachexchange