The New York State Commissioner of Public Ethics’ Joint Commission reported Saturday that a cyberattack stole passwords and data from a former money disclosure site.
The former state workers won a marvel in their mail on Saturday: knowing that their passwords from a former state financial disclosure had been stolen in a cyberattack.
The email addresses, usernames, and passwords come from the Legacy system of the Joint Commission on Public Ethics, which was used for monetary disclosures before 2015.
When the theft was discovered, all passwords for the existing monetary disclosure formula were reset, the letter said.
“However, we perceive that it is not unusual for Americans to use the same password on various Internet sites and applications,” the letter says. have been reused and use complex passwords that are not repeated on other platforms. “
The letters were signed by the commission’s executive director, Sanford Berland, who apologized for the inconvenience and said the firm is taking steps to lessen the threat of some other “security incident. “
Former Gov. Andrew Cuomo’s spokesman was among those who won the letter. On Twitter, he immediately criticized the commission, which he called JJOKE instead of JCOPE.
“So, either JJOKE was delayed for 3 months and told other people that their data was hacked through the mail on a holiday weekend,” tweeted spokesman Rich Azzopardi, “or there was ANOTHER more recent attack that was not revealed. Which one is?”
In the February attack, an Internet server containing the state’s filing systems for lobbying and monetary disclosures had to go offline. At the time, officials said they did not yet know if user data had been accessed.
The commission said in a statement that the letter referred to the February attack.