We have learned of a data exposure at the California State Controller’s Office (SCO)- Division of Unclaimed Property.
What Happened:
An employee of the SCO had their credentials compromised when they clicked on a phishing email and entered their username and password. This provided a threat actor access to that account for a little less than 24 hours before it was discovered, and remediation occurred.
What Information Was Involved?
The SCO believes that the compromised account had personally identifiable information contained in Unclaimed Property Reports.
What This Means To You As a CSUN Employee
None of your CSUN information associated as an employee was involved in the data exposure.
However, if you as an individual have records associated with Unclaimed Property with the State Controllers Office, your data could have been exposed.
What We Recommend
- You may access information about the exposure at this link:
- You can check to see if you have an unclaimed property records at a link on that page and also here:
- Place fraud alerts on your credit accounts if you do not already do so. Information for this process is on the SCO breach notification page.
- Lastly, the State Controller’s Office has received information that some scams and possibly fraud have occurred. I strongly recommend you be on the lookout for suspicious, emails, phone calls and correspondence that might be associated with this incident.
Feel free to reach out to iso@csun.edu if you have any questions or additional concerns.
CSUN will NEVER ask for your password or your personal information such as SSN and bank accounts. Beware of phishing scams that look like employment or internships offers.
