Titanium Metals Corporation (“TIMET”) notified the New Hampshire Attorney General’s Office on August 13 that “malicious software circumvented the Company’s firewall protections and downloaded information from the Company’s systems.” TIMET reports [pdf] that their Information Services Department discovered and stopped the cyberattack, but does not indicate how long it took for the attack to be discovered or how many individuals’ data were downloaded before the attack was blocked. The Pennsylvania-based company reports that they hired an outside forensics firm and
After an extensive investigation, the computer forensic experts reported on July 30, 2009, that they could not eliminate the possibility that some of the downloaded data included employees’ personal information, primarily Social Security numbers. We cannot confirm whether any employee’s personal information was, in fact, downloaded.