Description
The Oklahoma Department of Securities received notice of a vulnerability in a firewall that made a department server used as a storage device accessible. The department took immediate steps to close the vulnerability, and took the device offline. The department launched an investigation into this incident and hired third-party investigators to confirm what information, if any, may have been accessible. The department reported this incident to the FBI and has cooperated with its investigation. The investigation revealed that the information of as many as 305,746 individuals were affected. The department provided notice to impacted individuals whose personal information potentially was compromised. The department provided affected individuals with information regarding steps they can take to protect their information, including placing a credit freeze or fraud alert on their credit file, and complimentary credit monitoring services.
The department's computers comprise a standalone system and are not linked to any other State of Oklahoma systems. To date, the department has no evidence of actual fraudulent misuse of the information.
| Agency | Incident Date | Type of Data | Number of Records | More Information |
|---|---|---|---|---|
Department of Securities
|
December, 2018 | Personal information, including names, dates of birth, Social Security numbers, and financial account numbers |
305,746 individuals (local, national and international) |
Persons who think their information may have been compromised due to this breach should contact the department at 405-280-7700 from 8 a.m. to 5 p.m. CDT Monday through Friday. |
