PHOENIX — An official with Phoenix Access control said the system for managing controlled access was breached.
The Phoenix Access management system was compromised over the weekend.
The breach was discovered after Phoenix officials reviewed an access control system and found it was vulnerable to malicious software, said David Brown, spokesman for the Phoenix Department of Public Safety and Correctional Services.
“The information that was exposed was not authorized,” Brown said in an email.
“In fact, it was not allowed to be disclosed.
This was an oversight of Phoenix.”
The breach came to light Sunday when someone logged in to the Phoenix Access system, and discovered a malicious program on the server.
The malicious software contained a command called “killall”, which would wipe the computer of all data on the computer, including any passwords or personal information, said Brown.
The program was installed on a system used to manage controlled access.
Brown said the command would wipe all personal data off the computer without prompting.
The compromised system also had access to public information about inmates, which was protected by security codes, Brown said.
Brown said the security code was not compromised.
The system was later secured and replaced.
The affected Phoenix Access service was restored.
Brown would not comment on the status of the system.
The Department of Corrections said it was taking security measures to prevent similar incidents in the future.
Phoenix officials said they have a number of measures in place to help keep people safe, including an online portal that is used to report security breaches.