A data breach at the Kentucky Department of Fish and Wildlife Resources might have revealed some customers’ personal information, the agency said Friday.
Someone illegally accessed names, addresses, dates of birth, phone numbers, email addresses and the last four digits of Social Security numbers for people who have created a My Profile account on the Fish and Wildlife website, officials said. The accounts are an optional service for hunters and anglers that allows them to reprint licenses or see their license history, view harvest records, or enter the migratory bird survey or trophy fish program. Credit card information is not kept in this database.
“I guess about the worst someone could do with this information is print off a duplicate license for you,” Fish and Wildlife spokesman Mark Marraccini said.
The data breach was discovered Tuesday and was referred to the FBI, Kentucky State Police, and the Commonwealth Office of Technology for investigation, Marraccini said. He said he didn’t know how many individual accounts had been compromised.
In a news release about the case, the Kentucky Finance and Administration Cabinet urged Fish and Wildlife customers “to be diligent in monitoring their credit reports and financial records for any suspicious activity.”