City of Tucson Breach - May 17, 2022
Date: May, 2022The city of Tucson is the home of the University of Arizona and is about 100 miles southeast of Phoenix. Tucson boasts “the heart of the Sonoran Desert” and has a population of 1 million.
What Was the Breach?
“On May 29th, 2022, the City learned of suspicious activity involving a user’s network account credential,” a notification letter (source Bleeping Computer) sent out by Tucson stated. “The City quickly began to investigate this report and worked with third party forensic specialists to review City systems to determine the full nature and scope of this event.” The city began to send out the letters on September 23rd, 2022.
How Did the Breach Occur?
We aren't exactly sure how the breach happened at the time of writing. It could have been a phishing campaign, a too-easy password of a city official, or a targeted attack.
When Did This Breach Occur?
This breach occurred between May 17th and May 21st, 2022.
Who Does the Breach Impact?
The breach impacts certain members of the Tucson community. The letters, as mentioned above, were sent out to anyone the breach might have affected.
How Many Files Does the Breach Affect?
So far, we have an estimated 123,000 people affected by the breach. These people have had their social security numbers, names, addresses, passport numbers, driver’s licenses, and state IDs revealed and possibly stolen by the bad actor. The City of Tucson has offered the affected individuals one year of Experian credit monitoring.
Recent Breaches
Cisco Duo Breach
Cisco Duo is an access security provider that offers solutions for small business and commercial control products, including multi-factor authentication (MFA), single sign-on, and access control services....
AT&T Breach
American Telephone and Telegraph Company (AT&T) is the fourth-largest telecommunications provider, behind Verizon, Comcast, and China’s state-funded communications solution...
Fujitsu Limited Breach
Fujitsu Limited is the world’s sixth-largest IT service provider. Based in the Minato City ward of Tokyo, Japan, Fujitsu offers various technology solutions for personal and commercial use...
Cybersecurity and Infrastructure Security Agency Breach
The CISA collaborates with other government agencies to notify victims of breaches and respond to threats. These include the Federal Bureau of Investigation, the Multi-State Information Sharing & Analysis...
Roku Inc. Breach
Roku is a global streaming and entertainment organization. It offers solutions for direct streaming, live channels, music, niche channel entertainment, smart home devices, travel technology, audio options,...