TALLAHASSEE, FL. ---The Florida Department of Juvenile Justice reported an information security breach to the Florida Department of Law Enforcement Friday afternoon. The DJJ said the theft of a computer device might lead to the possibility of identity theft of tens of thousands of individuals including data about employees and youth offenders in the Florida Juvenile Justice system.
The device, which was stolen from a secure DJJ office, was not encrypted or password-protected as required by DJJ’s technology policy.
DJJ confirms that more than 100,000 records may have been compromised, and the agency is currently working to determine the affected individuals. DJJ is working to notify those youth and employees who may be affected, once they are determined.
On January 2, DJJ reported the theft of a mobile device containing youth and employee records to the Tallahassee Police Department, which is currently investigating the theft. DJJ has also notified the Office of Information Security.
“This is an unacceptable lapse that could potentially expose youth and employees to identity theft,” stated Secretary Wansley Walters. “We are working to determine who may be affected by the breach and make sure that all other devices with confidential information are properly protected. We are partnering with TPD to track down the stolen device and have reached out to FDLE.”
DJJ issued emails with a policy reminder and prospective security instructions to all employees and contracted provider programs requiring the immediate encryption of all mobile devices that are not already protected and contain confidential data.
On January 2, DJJ reported the theft of a mobile device containing youth and employee records to the Tallahassee Police Department, which is currently investigating the theft. DJJ has also notified the Office of Information Security.
“This is an unacceptable lapse that could potentially expose youth and employees to identity theft,” stated Secretary Wansley Walters. “We are working to determine who may be affected by the breach and make sure that all other devices with confidential information are properly protected. We are partnering with TPD to track down the stolen device and have reached out to FDLE.”
DJJ issued emails with a policy reminder and prospective security instructions to all employees and contracted provider programs requiring the immediate encryption of all mobile devices that are not already protected and contain confidential data.
No comments:
Post a Comment