Idaho National Laboratory had its Oracle Human Capital Management servers for its human resources apps compromised by the SiegedSec hacking operation, which claimed to have accessed "hundreds of thousands of user, employee, and citizen data," CyberScoop reports.
SiegedSec has already leaked a sample of the stolen information, which included Social Security numbers, bank account and routing numbers, health care details, marital status, and account types, with termination listings, SSNs of the laboratory's current employees, and other information from current, former, and retired employees shared observed in separate files.
Moreover, data shown by SiegedSec were as recent as Oct. 31 and included additional information categories not found in the sample suggesting more extensive data theft than claimed. Meanwhile, INL has already sought to bolster employee data protections following the incident, according to spokesperson Lori McNamara.
Such an intrusion comes after the Argonne, Brookhaven, and Lawrence Livermore National Laboratories were targeted by Russian cyberattacks earlier this year.
