Not in Kansas anymore, thousands affected by Wichita website hack

Share this article:

The city of Wichita had its website hacked over the weekend, consequently compromising sensitive information for tens of thousands of current and former vendors who have done business with the city and employees who have been reimbursed for expenses since 1997.

How many victims? Roughly 29,000.

What type of personal information? Social Security numbers, taxpayer identification numbers and banking information is among the data that was stolen. 

What happened? A band of cyber thieves hacked into the city of Wichita's website and stole the personal information. The security breach, which affected the city's electronic procurement website, has been corrected.

What was the response? An investigation is ongoing with the Federal Bureau of Investigation and other law enforcement agencies, as well as the state's Kansas Enterprise Security Office, to resolve the matter. The city is notifying affected businesses and individuals. All vendors that have established direct deposit business accounts and employees who have received reimbursements are being told to check in with banking institutions. Free fraud-alert services are being offered.

Details: A group of what appears to be Turkish hackers tweeted about the attack on Oct. 5 under the name @AgentCorporatio. An image was attached to the tweet, part of which reads, "to be continued," indicating more attacks may be underway.

Quote: “The city of Wichita is deeply concerned about this breach of security and the impact it may have on our vendors and employees,” said City Manager Robert Layton, in a statement. “Numerous steps are being taken to obtain more information about the incident, including the involvement of appropriate law enforcement agencies.”

Source: wichita.gov, “Officials: A City Website Hacked,” Oct. 7, 2013; wichita.gov, “WPD, FBI Investigating Website Hacking Case,” Oct. 8, 2013.

Share this article:
close

Next Article in The Data Breach Blog

Sign up to our newsletters

POLL

More in The Data Breach Blog

Laptop stolen from Self Regional Healthcare contained patient data

As least 500 patients of Self Regional Healthcare have been notified that their personal information was on a laptop stolen from a Self Regional facility.

Thousands had data on computers stolen from California medical office

Bay Area Pain Medical Associates notified about 2,780 patients that their data was on computers stolen from its California offices.

Subcontractor breach impacts 1,700 in Dominion Resources employee wellness plan

About 1,700 people in the Dominion Resources employee wellness program have been notified that their data was accessed in a breach.