SALT LAKE CITY -- Sensitive data that was compromised in a massive Utah Department of Health records breach had been lingering on state computers for months, instead of being erased within a day.
Department chief David Patton noted that violation of security protocol at a Wednesday community forum geared at the up to 780,000 people whose personal information was exposed in the hacking attack uncovered last month. About 40 or 50 showed up.
Patton also said the data was behind a weak password.
State officials are offering a year of free credit monitoring to people whose Social Security numbers were taken.
Attendees at the forum asked whether anyone at the state was being disciplined for the breach, but Patton said his office is concentrating on helping the victims rather than finding the culprits.