Social Security Numbers Swiped In State Data Breach

TALLAHASSEE, FL — The Florida Department of Agriculture and Consumer Services is offering free credit protection for an estimated 469 people whose social security numbers may have been compromised during a recent data breach. Another 16,000 concealed weapons licensees’ names may also have been obtained during the hack, state officials say.

The data breach was reported on Monday, May 22. Department officials say “no financial information was obtained in this data breach, which is the first that has occurred during this administration.”

Get the Patch newsletter and alerts in your inbox.

State officials say the breach involving 469 people centered on a formerly used online form that enabled people making payments to the agency to enter either their social security numbers or Federal Employer Identification Numbers. “In 2009, the department began only to request a FEIN in this field and stopped the prior practice of requesting either a social security number or FEIN,” an email from the department said.

Agency spokeswoman Jennifer Meale, however, said “some people may have entered their social security numbers in the FEIN field after the 2009 change, so the time frame is to-date” for those who may have been impacted by the breach. The online payment system that was compromised is “for application, registration, renewal and permit fees,” Meale told Patch.

The 469 people potentially impacted by the breach are being notified by mail, Meale said. They are all being offered free credit protection services for one year.

The data breach remains under investigation by the agency and the Florida Department of Law Enforcement. The state says it is believed the breach originated overseas. Commissioner Adam Putnam has also “ordered a comprehensive review of the department’s cybersecurity measures” in light of the breach.

As for the concealed weapon permit holders, authorities say hackers may have obtained the names of 16,190 licensees. That number represents less than 1 percent of the state’s total number of concealed weapon licensees. State officials say only the names of the licensees were compromised.

“No other individually identifying information of the concealed weapons licensees was compromised,” the agency’s email noted. “Only concealed weapon licensees who renewed online may have had their names accessed.” The department’s Office of Inspector General determined not enough information was taken for these people to face a risk of identity theft from the breach, the agency reported.

State customers concerned they may have been impacted by the breach may contact 1-800-350-1119 for more information.

People who are concerned about protecting their personal information are advised to take the following steps:

• Obtain a free credit report by visiting www.AnnualCreditReport.com
• If information appears to have been compromised, place a fraud alert on the credit report
• Closely monitor all financial information regularly, including bank and credit card accounts
• Report any suspicious activities on accounts to local law enforcement

Image via Shutterstock