State of New Jersey SealOFFICIAL SITE OF THE STATE OF NEW JERSEY

SANS Institute

NJCCIC Data Breach Notification

Original Release Date: 8/13/2020

Summary

On August 6, 2020, the SANS Institute – an organization that offers information security training, certification, and research –  discovered a suspicious forwarding rule during a review of email configuration and rules. SANS identified a single phishing email impacting a single employee's email account. The forwarded emails, sent to an unknown external email address, exposed approximately 28,000 records of personally identifiable information (PII), including email, first name, last name, work title, company name, industry, address, and country of residence. The exposed information does not include passwords or financial information such as credit card numbers. The forwarding rule and malicious Microsoft Office 365 add-in were removed and affected individuals will be notified by email.

Join & Subscribe

Never miss an update! Sign up for a no cost membership today! Receive up-to-date content and more in our weekly bulletin.

Sign Up

Featured Content

New Jersey Cybersecurity & Communications Integration Cell

2 Schwarzkopf Dr, Ewing Township, NJ 08628

njccic@cyber.nj.gov

OUR COMMITMENT

The NJCCIC is a component organization within the New Jersey Office of Homeland Security and Preparedness. We are the State's one-stop-shop for cyber threat analysis, incident reporting, and information sharing and are committed to making New Jersey more resilient to cyber threats by spreading awareness and promoting the adoption of best practices.

Agency Seals of State of NJ, NJOHSP and NJCCIC

STAY CONNECTED:

View our Privacy Policy here.

View our Site Index here.