Alaska

In February 2024, a Lower 48 Healthcare Technology Company experienced a data breach that negatively impacted several Alaskan pharmacies. The cyberattack has disrupted insurance payment processes and caused delays in providing electronic prescriptions. That has compelled patients to use cash to pay for medications and prescriptions in Alaska's pharmacies. The data breach impacted UnitedHealth Group, a major health insurance provider in Alaska. The breach prevented institutions like the Lower 48 Health Care Technology Company from facilitating the processing of medication claims to insurance corporations for payment. As the case is still ongoing, Lower 48 Health Care Technology keeps updating its customers about how to safeguard their personal information. The institution has also offered free identity monitoring services for a stipulated period.

In December 2022, the Alaska Railroad Corporation experienced a data breach. Hackers infiltrated the Railroad's network system and stole employees' and vendors' personal information. Some of this data included banking account details, dates of birth, Social Security numbers, marriage and birth certificate details, employer tax identification numbers, drug screening results, and health insurance data. That information could be used to launch credit card fraud and phishing attacks or implement medical identity theft and online impersonation. More than 4,700 individuals were affected by the cyber attack. On March 18, 2023, the Alaska Railroad Corporation informed its clients about the data breach. The Alaska Railroad Corporation also engaged forensic investigators and law enforcement officials to investigate the incident. The organization has engaged cybersecurity specialists to upgrade its security system and offered the affected individuals free identity theft protection and credit monitoring services.

In May 2021, Alaska's Department of Health and Social Services (DHSS) experienced a data breach that compromised residents' financial information. The hackers launched a malware attack that enabled them to steal thousands of residents' phone numbers, Social Security numbers, full names, financial data, dates of birth, and driver's license numbers. The cyber attack also exposed residents' historical information concerning their interactions with the DHSS and identifying Medicaid numbers. Alaskan officials removed the DHSS website after detecting the data breach on May 2. The cyber attack was reported to Alaska's Attorney General's office. Moreover, the officials delayed informing affected residents about the data breach to avoid interfering with the ongoing criminal investigation. On September 16, 2020, the DHSS announced the data breach in a press release that also informed Alaskans who had volunteered information to the DHSS about how to prevent identity theft. The DHSS also established a hotline to help concerned residents sign up for credit monitoring services.

Alaska's Court System suffered a cyber attack in April 2021. The ransomware attack negatively impacted the State's court system, which has long been dependent on outsourcing security services. The Court System's cybersecurity system immediately identified unusual activity. To limit the impact of the hacking activity, the Court System cut off all external internet access. Alaskan officials also hired cybersecurity specialists who placed tracing software in the network to comprehend the extent of the data breach. Keeping the court system offline for a month enabled cybersecurity experts to lock the hackers out of the network, reconfigure firewalls, bolster security, rebuild systems, and restore backup systems. During the month when it was offline, Alaska's Court System could not process online bail postings or facilitate the e-filing of cases. Court workers had to revert to old fax machines and carry out hearings by telephone. After the Court System returned online, Court workers re-trained workers on how to use backup methods and internet-based security functions.

In 2020, Alaska's Division of Elections Online Voter Registration System suffered a data breach. The cyber attack affected Alaska's online voter registration database, not the voter tabulation system. The hackers exploited an internal flaw that enabled them to access voter information. The data breach compromised the personal details of 113,000 Alaskans. These details included mailing and residential addresses, driver's license data, the last four digits of voters' Social Security numbers, party affiliation, registered voters' names, and state identification numbers. Moreover, this data breach did not adversely affect the actual election results. That is because Alaska's Division of Elections personnel engaged independent computer forensics contractors and State Security Office employees to investigate the data breach and prevent it from affecting the outcome of the elections. Alaskan election officials also complied with State laws regarding the exposure of sensitive information. Alaska's Online Voter Registration System is currently secure. Investigators established that the hackers wanted to shake voter confidence and spread propaganda but were unsuccessful.