Greater than a yr after a cyberattack on the federal government of Lengthy Seashore, California, town is informing residents that info on practically half 1,000,000 individuals was leaked.
In breach notification paperwork filed in a number of states, town mentioned 470,060 individuals had delicate information accessed by hackers who breached authorities methods throughout a cyberattack in November 2023.
Town mentioned it performed an “intensive” forensic investigation and “guide doc evaluation” that lasted till March 18, 2025. The data stolen contains Social Safety numbers, monetary account info, credit score and debit card numbers, biometric info, medical information, driver’s license numbers, passports, tax information and extra.
“This has confirmed to be an unprecedented occasion for our group, and we proceed to take this investigation and its findings severely,” Mayor Rex Richardson mentioned in a press release final week.
Victims who had Social Safety numbers leaked are being supplied one yr of identification safety companies. A name middle quantity has been created for victims who’ve questions in regards to the incident.
Town filed breach notifications in Maine, Oregon, New Hampshire, Massachusetts, Texas, California and a number of other different states.
On the time of the incident, town mentioned emergency companies weren’t impacted however some authorities methods have been taken offline in response to the assault. Town web site was down however authorities e mail and telephones have been nonetheless out there. Metropolis officers warned residents that they “might expertise some delays with methods and companies” and issued a proclamation of emergency.
No ransomware gang ever took credit score for the assault and Metropolis Supervisor Tom Modica claimed there’s “no indication of any fraudulent exercise because of this unauthorized entry.”
In an FAQ, town defined that it took 15 months to finish the investigation due to the “intensive forensic investigation and guide doc evaluation.”
“Anybody who has skilled a classy cyber incident is aware of it’s a time-intensive course of. We take the safety of knowledge very severely and wanted to make certain we have been assured within the outcomes of the investigation earlier than making any notifications,” town mentioned.
Town mentioned it will not disclose additional particulars of the incident as a result of “sharing such info may expose vulnerabilities which will try and be exploited additional.”
Recorded Future
Intelligence Cloud.
Study extra.
