NEWS RELEASE: A security incident involving a third-party provider of hosted software services, which was used by the Office of the Washington State Auditor, might have exposed sensitive data belonging to Washingtonians. 1/5

This data includes personal information from about 1.6 million unemployment claims made in 2020, as well as other information from some state agencies and local governments. SAO has notified law enforcement and the Attorney General’s Office of the incident. 2/5

“We at the State Auditor’s Office understand the importance of cybersecurity. Accountability and transparency are our core values,” McCarthy said. “We will continue to provide as much information as we can, as we move forward.” 3/5

“I want to be clear: This was an attack on a third-party service provider. The Employment Security Department did nothing to cause this, and is not responsible in any way for this incident,” McCarthy said. 4/5

Here is the full release: https://sao.wa.gov/third-party-service-providers-security-incident-compromised-washingtonians-personal-information/. 5/5