DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

SRA International network infected; company notifies all employees and customers that personal info may have been compromised

Posted on January 31, 2009 by Dissent

SRA International notified the Maryland Attorney General’s Office on January 20 that it had recently detected a virus on its network that may have allowed compromise of data. As of the date of the report, SRA’s security experts were reportedly still in the process of trying to eradicate the virus.

Because the security experts could not determine whether data had been compromised, the company decided to notify all current and former employees, customers, and dependents of employees who were enrolled in a health benefits program. The personal data at risk included name, address, date of birth, social security number and health information, as well as “personal information stored on a company computer (and which in select cases might include personal data reflected in security position questionnaires.)” SRA was notifying 1,397 Maryland residents of the incident; the total number was not provided. SRA International, which counts defense and military service organizations among its national security service clients, reports that it has 6,600 employees worldwide.

The company set up a web page on the incident on their portal site and established a dedicated email address for those affected to use if they had questions. In his notification to employees, Stan Sloane, President & CEO offered them free credit monitoring services, but also instructed them not to discuss the incident outside of the company.

No copy of the notification to customers was attached to the filed report.

Category: Breach IncidentsBusiness SectorMalwareU.S.

Post navigation

← Ameriprise notifies customers of online breach
IN: HoneyBaked Ham customer data stolen →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Runsafe report: Medical device cyberattacks threaten patient care, strain budgets, top concern for healthcare sector
  • Ryuk ransomware’s initial access expert extradited to the U.S. from Ukraine
  • Alleged Geisinger hacker will defend himself pro se.
  • Tallahassee Memorial Healthcare reveals it was also impacted by Cerner/Legacy Oracle cyberattack
  • Hospital cyberattack investigation complete, no formal review needed
  • Largest Ever Seizure of Funds Related to Crypto Confidence Scams
  • IMPACT: 170 patients harmed as a result of Qilin’s ransomware attack on NHS vendor Synnovis
  • DOJ’s Data Security Program: Key Compliance Considerations for Impacted Entities
  • UBS reports data leak after cyber attack on provider, client data unaffected
  • Scania confirms insurance claim data breach in extortion attempt

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • DOJ’s Data Security Program: Key Compliance Considerations for Impacted Entities
  • 23andMe fined £2.31 million for failing to protect UK users’ genetic data
  • DOJ Seeks More Time on Tower Dumps
  • Your household smart products must respect your privacy – including your air fryer
  • Vermont signs Kids Code into law, faces legal challenges
  • Data Categories and Surveillance Pricing: Ferguson’s Nuanced Approach to Privacy Innovation
  • Anne Wojcicki Wins Bidding for 23andMe

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.
Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report