Oklahoma, you’re not “O.K.” : Oklahoma Securities Commission Data Breach

Oklahoma might have been “O.K.” in Rodgers and Hammerstein’s 1943 Pulitzer Prize-winning Broadway musical, but the state’s cybersecurity standards certainly aren’t.

On January 16, the ODS (Oklahoma Department of Securities), which oversees and regulates Oklahoma’s securities business, announced “an incident involving the inadvertent exposure of information during installation of a firewall.”

Data relating to FBI investigations, emails, and Social Security numbers dating back 7 years was exposed. Companies included in the leaked FBI files were AT&T, Goldman Sachs, and Lehman Brothers.

In line with Department of Justice policy, the FBI declined to comment on whether it was investigating.

Charles Kaiser, spokesperson at the Oklahoma Securities Commission, the ODS’s policy-making and governing authority, said: “This matter is under investigation and the department has no further comment at this time.” 

According to its announcement, the ODS is following the typical course of action after a breach by reviewing internal procedures, controls, and security measures. It is notifying those impacted and investigating who accessed the database.

Unfortunately, data breaches are becoming increasingly common. Although there is no foolproof solution to prevent them foolproof solution to prevent them, IT Governance USA can work with your organization to meet its ISO 27001, EU GDPR (General Data Protection Regulation), PCI DSS (Payment Card Industry Data Security Standard), and penetration testing requirements.

Our comprehensive range of products and services, combined with flexible and cost-effective delivery options, provide a unique, integrated alternative to the traditional consultancy firm, publishing house, penetration tester or training provider. We pride ourselves on our international customer base, and delivering a broad range of integrated, high-quality solutions globally, while meeting the real-world needs of today’s organizations, directors and practitioners.

 Contact us on 1-877-317-3454 or email servicecenter@itgovernanceusa.com for more information or to discuss your requirements. Follow us on Facebook, LinkedIn, and Twitter to stay up to date on our products and services and the latest cybersecurity news.