The social security numbers, driver’s licenses, payroll, health and other personal details of Hoboken city workers were among the data stolen in a “massive” cybersecurity breach last month.
According to a list of thousands of stolen files obtained by The Jersey Journal, every department in City Hall — ranging from payroll to construction, health, and animal control — was affected by the hack, with some of the pilfered information dating back to 1987
The personal information of residents who applied for rental assistance during the COVID-19 pandemic is also in the hands of the hackers, but it is unclear whether or not those affected have been notified.
City officials stopped short of providing how much sensitive information was leaked in the cybersecurity breach on Nov. 27, which forced the shut down of City Hall right before Thanksgiving. The attack also impacted the municipal courts and some of the city’s services.
On Wednesday, nearly, a week after the attack, officials announced some of the city’s digital operations have resumed. Officials also noted that majority of services remain available online, including purchasing temporary-no-parking signs, parking permits, and other services provided by third-party vendors.
“The city of Hoboken continues to make progress recovering from last week’s cyber attack,” officials said in a statement. “The city is actively working with the Hoboken Police Department, federal law enforcement agencies, and IT specialists to thoroughly investigate the cause and extent of the incident.”
It continued: “Out of an abundance of caution, individuals are encouraged to monitor and protect themselves from any unusual activity on any personal accounts.”
The Russia-linked ransomware group ThreeAM — also known as 3AM — has since claimed responsibility for the attack, NJ.com reported, though any demands they may have made of city have not been made public.
