DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

MO: Springfield city website hacked as part of series of hacks involving government and law enforcement

Posted on February 28, 2012 by Dissent

Springfield officials say the personal information of about 2,100 citizens may have been obtained by hackers when the city’s website was “compromised” Feb. 17, a Friday.

Some functions have been turned off on the city’s website, springfieldmo.gov, as authorities investigate the apparent breach, said city spokeswoman, Cora Scott.

Read more on News-Leader.com

A statement posted yesterday on the city’s web site says:

City Website Compromised

The City of Springfield’s public-facing website (springfieldmo.gov) was compromised Friday, Feb. 17 and certain functionality has been turned off to secure the site while authorities investigate.

Officials are taking steps to notify approximately 2,100 individuals whose personal information may have been obtained when the site was breached. To reduce risk of harm from this incident, these individuals will receive a letter by mail offering a one-year subscription with an identity theft protection company.

The site passed a Feb. 8, 2012 Payment Card Industry (PCI) security scan, however, the City is looking into the vulnerability and modifications have been made to the website to prevent further incidents from compromising any information in the future.

No additional details can be released while the investigation continues. As required by State statute, the City has notified the Attorney General’s Office of this incident.

Those needing assistance with functions currently inaccessible on the site may call 417-864-1010. Media with questions – please call 417-864-1009.

The hack appears to be the work of hackers who identify themselves as Kahuna and CabinCr3w, and is part of #OpPiggyBank. In a statement accompanying the release, they write:

Small Redacted Sample Of Data Taken From Police Database

Data Contained Is Online Police Reports (OPR) and Misc Warrant And Summons Data
All Data That Could Cause Problems To Civilians Has Been Redacted, As It Contains Social Security Numbers, Addresses, and Other Personal Information Of Citizens..now some cake

The data they acquired reported includes:

OPR_PERSONS – 6071 Entries
AGE,C_PHONE,DOB,EMAIL,EYE_COLOR,H_ADDRESS,H_CITY,
H_PHONE,H_STATE,H_ZIP,HAIR_COLOR,HEIGHT,ID,M_ADDRESS,M_CITY
,M_STATE,M_ZIP,NAME,PERSONSID,RACE,ROLE,SEX,SKINTONE,SSN,SUS_DESC
,W_PHONE,WEIGHT,

WARRANTS – 15,887 entries

ACCYON,AGE,BRTHDT,CITY,CTCDNO,CTCDSC,DFADRS,DFNAME,EMPLYR,EYESCL,
HAIRCL,HEIGHT,JRSDCT,MNFSTN,MNLSTN,MNMIDN,NMSFX,OFCRNO,OFNDT,
OFNSLC,OFNSTM,PDCASE,RACECD,RADYON,RELCON,SEXCOD,STCODE,TCKTNO,
TKINFO,VILCOD,VILLD*,VILSDS,VLOCNO,VLRPPD,WEIGHT,WRISDT,WRNTYP,
WRTBND,WTYPTX,ZIPCD*,ZIPCD2

OPR_BUSINESS – 408 entries
ADDR,ID,NAME,PHONE

OPR_VEHICLE- 1041 entries
COLOR,EXIST_DAMAGE,ID,LICENSE_NO,LICENSE_YEAR,LOCKED,MAKE,MODEL,
NAME,PARKED,ROLE,SPEC_FEATURES,STATE,STYLE,TYPE,VALUE,
VEHICLE_YEAR,VEHICLEID,VIN

SUMMONS – 284,618 ENTRIES
ACCYON,CTCDNO,CTCDSC,DSN,JURISDICTION,OFNSDATE,OFNSLOC,OFNSTIME,
PDCASE,RADYON,TICKETNO,VILCOD,VILSDS,VLOCNO,VLRPPD

That’s a lot of personally identifiable information and it’s not clear why only 2,100 are being notified if one database alone had over 6,000 entries including Social Security numbers and the warrants database had almost 16,000 entries.

None of those details were reported on the city’s web site or in the media coverage of the incident. The hackers have posted some redacted proof of hack. As they have in the past, they have opted to not expose citizens’ personal information.

Related posts:

  • Why MilitarySingles.com’s denial of breach fails to convince me (updated)
Category: Breach IncidentsGovernment SectorHackU.S.

Post navigation

← Hackers publish private information about L.A. police officers
Fun Publications Admits To Security Breach, Apologizes for Inconvenience →

2 thoughts on “MO: Springfield city website hacked as part of series of hacks involving government and law enforcement”

  1. JJ says:
    February 28, 2012 at 1:16 pm

    You’re going to see a lot more of these as attackers realize that city, township and county governments hold a lot or personal information and generally do not have the expertise or inclination or budget to protect it. Think about all of the city income tax forms you’ve filed over the years and then look at the budget condition of that city.

    1. Muffles says:
      March 1, 2012 at 1:18 pm

      One of the best solutions could be slaves… I mean, unpaid interns who want to go into IT and software engineering.

Comments are closed.

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Texas Centers for Infectious Disease Associates Notifies Individuals of Data Breach in 2024
  • Battlefords Union Hospitals notifies patients of employee snooping in their records
  • Alert: Scattered Spider has added North American airline and transportation organizations to their target list
  • Northern Light Health patients affected by security incident at Compumedics; 10 healthcare entities affected
  • Privacy commissioner reviewing reported Ontario Health atHome data breach
  • CMS warns Medicare providers of fraud scheme
  • Ex-student charged with wave of cyber attacks on Sydney uni
  • Detaining Hackers Before the Crime? Tamil Nadu’s Supreme Court Approves Preventive Custody for Cyber Offenders
  • Potential Cyberattack Scrambles Columbia University Computer Systems
  • 222,000 customer records allegedly from Manhattan Parking Group leaked

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • Germany Wants Apple, Google to Remove DeepSeek From Their App Stores
  • Supreme Court upholds Texas law requiring age verification on porn sites
  • Justices nix Medicaid ‘right’ to choose doctor, defunding Planned Parenthood in South Carolina
  • European Commission publishes its plan to enable more effective law enforcement access to data
  • Sacred Secrets: The Biblical Case for Privacy and Data Protection
  • Microsoft’s Departing Privacy Chief Calls for Regulator Outreach
  • Nestle USA Settles Suit Over Job-Application Medical Questions

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.