Kankakee Valley REMC reported a possible data breach after a cybersecurity audit revealed a foreign Internet Protocol address had accessed a storage device on the cooperative's network.
How many victims? 17,700 Kankakee Valley REMC members
What type of information? Members' names, addresses, phone numbers, Kankakee Valley REMC location numbers, Kankakee Valley REMC member numbers and Kankakee Valley REMC account numbers.
What happened? In mid-January 2016, a cybersecurity audit revealed unauthorized access to a storage device on the cooperative's network. The cooperative took immediate action to remove the accessed pathway.
What was the response? The cooperative mailed letters to inform the Kankakee Valley REMC membership of the possible breach and encouraged members to take the necessary steps through the Office of the Indiana Attorney General website, to protect their identity. The cooperative has put in place procedures to conduct regular cyber security audits to increase the effectiveness of its cyber defense within the cooperative's network of systems.
Details? Officials said the information was viewed by the unauthorized party but said it is currently unclear if the information was copied or taken from the system. The cooperative adds an extra layer of encryption to all critical information.
Quote: “We are managing the incident as if the data has been compromised to ensure the highest level of protection to our membership,” Kankakee Valley REMC Chief Executive Officer Dennis Weiss said in the release.
Source: Kankakee Valley REMC press release, Kankakee Valley REMC spokesperson