Jonathan Grieg reports:
Radio Free Asia, a U.S. government-sponsored news outlet, announced a breach this week that affected almost 4,000 people – leaking troves of personal information including Social Security and passport numbers, as well as financial data.
According to documents filed with Maine’s attorney general, the hack occurred on June 17 and was discovered by RFA on June 28. At least 3,779 were affected by the hack, which included the theft of addresses, driver’s license numbers, health insurance information, medical information, and “limited financial information.”
Read more at The Record, although I’m a bit confused by the reporting on this one. Nothing in RFA’s report to Maine or to those affected suggests that the data was dumped or leaked online. The data may have been exfiltrated, but I think it’s misleading to say it leaked. It was stolen. Or am I using the word “leaked” incorrectly?