Ifoothills.org Registrants Personal data and credit card numbers possibly stolen in Foothills Park & Recreation facilities Breach
Foothills Park & Recreation District in South Jefferson County is working with the Jefferson County Sheriff’s Office in the investigation of a theft of personal information from the district’s computer network. The information have been accessed through an illegal hacking and could contain credit card information and other personal information that could be used to commit identity theft.
If information has, in fact, been stolen, it appears to be credit card information for individuals who have registered for classes either online at www.ifoothills.org or at one of Foothills Park & Recreation District’s facilities.
Foothills Executive Director Ronald Hopp said, “It is very disturbing that despite the security measures that were in effect, a rogue hacker was still successful in obtaining this information. Additional protections are being installed, and on-line registration will not be available until these measures are implemented.”
Hopp said that they started having trouble with the Web site last week. Originally the problem seemed to be a virus, but they now believe it was a cover for someone to hack the site and steal personal information. Technical staff discovered Monday morning that the files were compromised and possibly stolen the number of people affected would be “very significant.”
The district has hired a network security consultant who will be auditing the systems and making recommendations for future security measures, and all internal systems and processes are being reviewed in an effort to eliminate the possibility of this happening again.
Individual patrons whose information may have been compromised will be notified by Foothills Park & Recreation District directly and provided with additional information. The district has created an information page on its website (www.ifoothills.org/securityalert/) for individuals who are concerned that their information may have been on the network. In addition, the district has set up a special number at (303) 409-2124 to answer specific questions not addressed on the website.
More on CyberInsecure:
Leave a Reply
Comments with unsolicited links to other resources will be marked as spam. DO NOT leave links in comments. Please leave your real email, it wont be published.