SECURITY BREACH at WorkSource Oregon on 6 Oct., yet no one from WorkSource, Code Oregon, or Treehouse mentions it to us?

Question

WorkSource Oregon just told me that they had a security breach on 6 October, when over 850,000 accounts were compromised. I just got off the phone with them. They said it happened on 6 October, and the IT department staff found out about it the same day and fixed it, yet they still have not notified anyone registered with them about the nature of the breach, what information was stolen, who was affected, even though they have a database with people's names and private information readily available. There is a hotline number to call to see if your personal information was stolen. I found out about it through the news media.

http://www.kptv.com/story/26776035/worksource-oregon-data-breach-affects-850000-people

"850,000 people potentially impacted by WorkSource Oregon security breach

Posted: Oct 13, 2014 4:45 PM PST Updated: Oct 13, 2014 7:19 PM PST By FOX 12 Staff

SALEM, OR (KPTV) -

The Oregon Employment Department will be offering identity theft protection to jobseekers who may have been compromised by a security vulnerability.

After reviewing 1.9 million records for people who have registered with the WorkSource Oregon Management Information System(WOMIS), state officials say they've identified 851,322 people whose information may have been compromised. There's no evidence so far that the information has been used, but officials say they want to be proactive in contacting those who've registered with their system.

At the direction of Governor Kitzhaber, state officials contacted police and the state is working with them to determine whether criminal activity has occurred.

Letters will be sent within the next week to people registered in WOMIS, and, as a precaution, the employment department will ask customers to re-select security questions and reset their password when logging into their WorkSource account.

A hotline was set up Monday to help people determine whether they have been identified as someone whose information may have been compromised. The number is 1-877-643-4322. Staff will answer the hotline calls from 8 a.m. to 5 p.m. Monday through Friday.

WorkSource is used by thousands of people to look for jobs in Oregon"

Answer 1 · 2014-10-15T15:26:58Z

October 15, 2014 3:26pm

Steve Davis thanks for bringing this to our attention. Indeed, this is the first time we've heard of this unfortunately. We have contacted WorkSource to assess if any data related to Code Oregon was impacted, and will circle back with an update as soon as possible.

Answer 2 · 2014-10-15T22:06:18Z

October 15, 2014 10:06pm

To follow up on this: we've just issued a statement via email to all Code Oregon students that outlines what this breach means for them and what to do next.

Answer 3 · 2014-10-15T23:18:55Z

October 15, 2014 11:18pm

Very poor communication, obvious incompetency, careless mishandling of our personal data entrusted to them, and obviously our personal data is not safe or respected. The IT staff at WorkSource Oregon who discovered this massive security breach on 6 October certainly don't seem to be competent, and/or perhaps their superiors knew and deliberately suppressed communication about the event to those of us who are affected. It is frankly very hard to believe that no one else was informed at Treehouse, Code Oregon, and all of the victims of this security breach until now.

Answer 4 · 2014-10-15T23:43:00Z

October 15, 2014 11:43pm

Steve Davis I understand your disappointment. I want to assure you that nobody at Treehouse was aware of this until earlier today. At that time, we took immediate action by reaching out to our partner to understand what happened. WorkSource is still conducting their own internal investigation. We have updated those of our students who may have been affected with everything we know, and will continue to do so as we find out more information.

Thank you for bringing this to our attention. We are certainly less than thrilled that we didn’t hear about it sooner.

Answer 5 · 2014-10-16T01:05:50Z

October 16, 2014 1:05am

Michael, Thanks for your reply. There is still a massive security breach and lots of questions to answer, as well as the 'potential' identity theft and personal data theft issues to deal with for hundreds of thousands of victims. I hope that there are very specific answers forthcoming to those questions and issues.

Answer 6 · 2014-10-17T15:44:30Z

October 17, 2014 3:44pm

As a result of the WorkSource Oregon IT breech on October 6, 2014, WorkSource Oregon clients had to change their passwords this week. You now have to answer 3 security questions instead of 1 if you forget your password. You must change your password every 3 months. Expect to receive a letter from WorkSource Oregon via U. S. mail offering free 1 year credit report monitoring.

If you are a Code Oregon student, you're required to complete the WorkSource Oregon Welcome process within 30 days of enrolling in Code Oregon. It takes 1 1/2-3 hours. It's best to be at WorkSource Oregon at 8:00 a.m. to go through their Welcome program. Once this is completed, you're set. You have 6 months to finish your Code Oregon course.

The WorkSource Oregon staff are not able to help you with your Code Oregon courses. For help, post your questions/problems on the appropriate Code Oregon forum page, help support if there is a general operating problem, or ask your instructor.

Welcome to the Treehouse Community

Looking to learn something new?

Steve Davis

Steve Davis

SECURITY BREACH at WorkSource Oregon on 6 Oct., yet no one from WorkSource, Code Oregon, or Treehouse mentions it to us?

6 Answers

Michael Watson

Michael Watson

Micah Cooksey

Micah Cooksey

Steve Davis

Steve Davis

Michael Watson

Michael Watson

Steve Davis

Steve Davis

Kathryn Notson

Kathryn Notson