The Missouri State Employees Retirement System (MOSERS) reported that someone gained “unauthorized access” to four members’ accounts.
The hacker or hackers filled out online forms that required the use of the members’ Social Security numbers, retirement identification numbers and passwords, according to news reports. Candy Smith, the retirement system’s communication and strategic planning coordinator, told the Jefferson City News Tribune attempts to get money were detected, and no money was released.
In a letter to members posted on its website, MOSERS said, “We are taking this matter very seriously, and we are working with state and federal law enforcement officials to identify and bring to justice the guilty party(ies).”
The retirement system said “out of an abundance of caution” it has rescinded the online passwords and security questions for all members. Members will have to set up new passwords and security questions the next time they log in to the system’s website.
In recent years, there have been at least 15 publicized data breaches at both employee benefit service providers and government retirement systems routinely covered by PLANSPONSOR.