Mark Harmsworth of the Washington Policy Center discusses a recent identity theft that took place at Washington’s Labor and Industry Tukwila facility of hard drives, laptops, cellphones, office equipment, access cards and other items
Mark Harmsworth
Washington Policy Center
Washington’s Labor and Industry (L&I), reported on April 29 that a theft had occurred at its Tukwila facility of hard drives, laptops, cellphones, office equipment, access cards and other items.
The hard drives held agency files which may have contained the personally identifiable information of people who have had business with the regional office [Tukwila] location including some L&I employees’ dependents’ personal information, according to L&I.
This, again, raises the issue of whether the state has the ability to protect Washington residents’ data appropriately. The breach is the latest in a series of high profile data leaks from state agencies, including the state auditor’s office who is tasked with auditing breaches.
L&I has indicated that the data stolen would not be accessible without considerable effort. This is not the standard that is required to protect data. The industry standard for data protection is an AES-256 encryption algorithm or better.
With today’s technology-based systems, the reality is that no system is 100% safe, but in this case several reasonable steps appear not to have been taken by those handling the data. Similar to the data breach that occurred at WSU in 2017, the data that should have been stored on secure servers was stolen while it was outside of its intended normal use. In the WSU case, a researcher had data stored on a local drive for analysis and did not follow the appropriate data protection procedures.
The government has a lot of very sensitive data concerning Washington residents stored on servers, hard drives and laptops.
Private companies are required to follow laws to protect both the security and the privacy of consumer data and recent proposals such as the Washington Privacy Act should also be applied to state agencies.
It’s time the agencies take the protection of personal data seriously.
For those concerned that their data may have been part of the breach, L&I has set up a call center for more information and steps you can take to protect your accounts and credit. It can be reached on (833) 940-2302.
Mark Harmsworth is the director of the Small Business Center at the Washington Policy Center.
Also read:
- $1B for WA broadband gets Trump administration approval
Federal approval unlocks over $1 billion to expand high-speed internet to unserved and underserved communities across Washington. - WA passes legislation requiring no-cost insurance for state recommended vaccines
House Bill 2242 shifts the trigger for no-cost vaccine insurance coverage in Washington from federal recommendations to the state Department of Health. - Opinion: WA House Finance Committee passes income tax bill
Ryan Frost argues that ESSB 6346, which would impose a 9.9 percent income tax, advances to the House floor despite widespread opposition and ongoing budget growth. - Journey Theater presents Mary Poppins
Journey Theater will stage six performances of Mary Poppins at Fort Vancouver High School beginning March 6, featuring a cast of local youth performers. - Opinion: A-pillars – The safety feature that increases crashes
Doug Dahl explains how wider A-pillars designed to protect occupants in rollovers may also reduce visibility and increase crash risk for other road users. - Area cat rescue to host ‘Hisses Get Kisses’ online auction
Furry Friends will host its sixth annual online auction March 23–29 to help fund more than 900 projected spay and neuter surgeries and ongoing medical care for cats in Clark County. - POLL: Will lawmakers’ actions at Tuesday’s State of the Union Address impact your voting in the upcoming mid-term election?
Clark County Today’s latest poll asks voters whether lawmakers’ conduct during the State of the Union will influence their mid-term election decisions.
