Ten Months Later, Memphis Police Dept. First Notifies People Of Data Breach?

Melissa Moon reports:

“A security breach at the Memphis Police Department may have compromised the personal information of thousands.

It happened nearly a year ago, but those at risk are just finding out about it.

Memphis Police say in April of 2013 someone hacked into a database system used to search for people, residences, and vehicles and had access to personal information, like social security and driver’s license numbers.”

Is the MPD really claiming it was a hack? How odd, considering in May 2013, they were saying that it was a “glitch” in their system. As WMC-TV reported on May 10, 2013:

– A major glitch in a Memphis Police Department database is leaving sensitive personal information available for anyone to find on the worldwide web.

A woman, who wished to keep her identity private, said a friend sent her text messages of screen grabs from a Google search of her information online. Also, it included names, addresses, phone numbers, and social security numbers for her entire family.

“It has been chaos,” she said. “My momma should’ve never been out there. I should’ve never been out there. My whole family should’ve never been out there.”

If a user typed in specific terms, Google returned results pulled from police incident reports in the database.

“We had a glitch in our system,” said MPD public information officer Karen Rudolph.”We immediately shut down the system. Our officers aren’t even utilizing it now. And, we’re working on it to make sure that more security measures are taken.”

The information is public records, which are available at a price at central records inside 201 Poplar.

Memphis police do not want any of it online.

MPD will not release how many were affected.

They sent a list to the credit bureau. Also, MPD is working with Google to clear the information from the web.

So… what happened last year? A hack, or a glitch, or were there two incidents?

via » Ten months later, Memphis Police Dept. first notifies people of data breach?.

———————————————-

Journal of Law & Cyber Warfare | www.jlcw.org The Journal of Law & Cyber Warfare provides a public peer-reviewed law publication to foster open discussion and education of technology, government and legal stakeholder in relation to the complex issue of cyber warfare.  Journal of Law & Cyber Warfare accepts articles written by military, technology, judges, government officials, academic and legal practitioners.  The Journal of Law & Cyber Warfare provides a public peer-reviewed law publication to foster open discussion and education of technology, government and legal stakeholder in relation to the complex issue of cyber warfare.  Journal of Law & Cyber Warfare accepts articles written by military, technology, judges, government officials, academic and legal practitioners. The Journal of Law & Cyber Warfare is honored by the world class caliber editorial board that is involved with the Journal. Thought leaders from forensics, law, warfare, and cyber security are on the Board. The Journal is always looking for interested thought leaders who believe they can contribute in a meaningful fashion to the development of cyber warfare scholarship.