"Personal Data of Nearly 4,000 People Leaked in Hack of Radio Free Asia"

Radio Free Asia (RFA), a US government-sponsored news outlet, revealed that it faced a breach that affected nearly 4,000 people and exposed vast amounts of personal information, including Social Security numbers and passport numbers, as well as financial information. The hack occurred on June 17, according to documents filed with Maine's attorney general, and RFA discovered it on June 28. The hack affected at least 3,779 people, with addresses, driver's license numbers, health insurance information, medical information, and "limited financial information" stolen. The incident was discovered within the organization's email system, which indicated unauthorized access to a limited number of servers. RFA took systems offline immediately after detection and then took measures to address and contain the incident, including launching an investigation, engaging data privacy and security professionals, collaborating with law enforcement, changing passwords, and migrating to a new cloud-based email environment, according to the organization's statement. The investigation determined that the unauthorized access was caused by an exploit of a service provider's vulnerability that RFA was unaware of at the time of the compromise. There is currently no evidence that information has been misused, but victims are being offered two years of free credit monitoring through Equifax. This article continues to discuss the RFA hack that leaked personal data belonging to almost 4,000 people.  

The Record reports "Personal Data of Nearly 4,000 People Leaked in Hack of Radio Free Asia"