The information on this page was last updated: 03/04/2021 7:30 AM
The process is under way to notify people whose unemployment benefits claims information may have been affected by a data security breach of the Accellion file transfer service.
The notifications will be sent by e-mail during the next two weeks to people who filed an unemployment insurance claim in 2020. The e-mail will contain information about identity theft protection and an individual code for 12 months of free credit monitoring and instructions on how to enroll and request assistance.
The Office of the Washington State Auditor will update this page as this process proceeds.
Is This Notice Available in Other Languages? This information is also available in other languages at SAO’s website, sao.wa.gov/breach2021.
What Happened? In mid-January of 2021, SAO was alerted to a potential security incident involving the Accellion file transfer service. SAO immediately contacted Accellion for specific details. Over the next few weeks, SAO learned that an unauthorized person gained access to data stored in SAO’s file transfer account with Accellion. SAO began working with Accellion to identify which files may have been impacted by the incident. The incident is under active investigation by Accellion, SAO, and law enforcement.
What Information Was Involved? Some of the data files identified by Accellion contained personal information of individuals, among others, who received unemployment benefits from the Employment Security Department (“ESD”) in the 2017 to 2020 time period. These files may have contained the person’s name, Social Security number, date of birth, street and email addresses, bank account number and bank routing number. The Accellion service was not managed by ESD and ESD bears no responsibility for this data breach and is not in a position to respond to calls or questions about this matter.
Our Response. As soon as SAO became aware of the incident, SAO immediately contacted Accellion to understand the scope and nature of the incident and the impact on our data files. Once Accellion began to identify the affected files, SAO mobilized its team to both assess the data files that were impacted and the security of SAO’s network. SAO is working with cybersecurity experts and, to date, has found no indication of compromise to its network.