California State Controllers Office Suffers Data Breach

Employee unwittingly gave hacker access to email account for more than a day.

The California State Controllers Office (SCO) reported that a phishing attack led to a data breach that exposed personnel files and email contacts for more than a day.
An employee of the California State Controllers Office (SCO) Unclaimed Property Division clicked on a link in an email they received and then entered their user ID and password as prompted, unknowingly providing an unauthorized user with access to their email account, the SCO said in a breach notice.
An unauthorized user had access to the employees email account from 1:42pm local time on March 18 to 3:19pm on March 19. The attacker sent potentially malicious emails to some of the SCO employees contacts.
Officials have not disclosed additional information on the extent of what was exposed in the breach, but according to
KrebsOnSecurity
, an anonymous source in an adjacent California state agency said the attacker had access to the phished employees Microsoft Office 365 files. SCO officials responded to KrebsonSecurity, stating that an investigation into the attack showed no access was made to any Office 365 files other than the employees mailbox.
The full breach notice can be found
here
.

Last News
▸ ArcSight prepares for future at user conference post HP acquisition. ◂ Discovered: 07/01/2025 Category: security	▸ Samsung Epic 4G: First To Use Media Hub ◂ Discovered: 07/01/2025 Category: security	▸ Many third-party software fails security tests ◂ Discovered: 07/01/2025 Category: security

**Cyber Security Categories**
Google Dorks Database	Exploits Vulnerability	Exploit Shellcodes

CVE List

Tools/Apps

News/Aarticles

Phishing Database

Deepfake Detection

Trends/Statistics & Live Infos

Tags:
California State Controllers Office Suffers Data Breach