State Bar notifies 1,300 people identified in massive data breach – Pasadena Star News
The California State Bar began notifying thousands of people whose names appeared in 322,525 confidential attorney discipline filings posted online in a massive data breach uncovered in February,
Specifically, the state bar said Friday, May 6, that it will contact by email or mail 1,300 complainants, witnesses or respondents whose names appeared in the 1,034 confidential records that showed evidence of a page view. . Individuals named in unaccessed records with emails registered with the State Bar will also be contacted.
“We are taking these actions because we believe it is the right thing to do,” State Bar Executive Director Leah Wilson said in a statement. “The State Bar is committed to transparency, and maintaining public trust in our agency is paramount. That said, we had to balance our commitment to transparency with considerations of cost, logistics and budgetary prudence. We think we have found the right balance. »
The documents, published by public records aggregator Judyrecords, remained online from October 15, 2021 to February 26, 2022.
The breach, first reported by the Southern California News Group, was not a malicious hack, but rather a security vulnerability in State Bar’s Odyssey portal operated by Texas-based Tyler Technologies. As a result, the confidential records were unwittingly scanned and released by Judyrecords.
Access to the State Bar Court Public Records has been restored and the Odyssey Portal vulnerability has been fixed.
The search function on the Judyrecords site remained disabled on Friday. The website administrator said in a note to users that the Tyler Technologies portal issue allowed access to court cases from various jurisdictions in California, Texas, Georgia and Kansas.