Tehama Announces Cybersecurity Breach

A data breach in Tehama County has potentially exposed the private information of county employees, Social Services recipients and affiliates. The county has begun notifying potential victims, but has not said how many people may have been affected. 

“The County of Tehama first learned about the incident on April 9, 2022, when we detected suspicious activity on our IT systems,” the county said in a letter. “Upon identifying this suspicious activity, we immediately took steps to protect and secure our systems. The County of Tehama also launched an investigation and notified law enforcement. Through our investigation, we determined that an unauthorized party gained access to our IT network between the dates of November 18, 2021 and April 9, 2022. The investigation further determined that the unauthorized party accessed files on the County of Tehama Department of Social Services’ system.”

The information that was exposed includes names, addresses, birth dates, Social Security numbers, driver’s license numbers, and details about services received. The county is providing complimentary credit monitoring and identity theft protection to those affected.

Tehama has not identified the type of ransomware responsible. However, Security Week notes that Quantum ransomware hackers store and published around 32 gigabytes of Tehama County’s data in June.