Personal info of LDS church members, employees compromised in data breach

Written by Mori Kessler
October 13, 2022

ST. GEORGE — The Church of Jesus Christ of Latter-day Saints announced Thursday that it was the target of a cyber attack earlier this year that resulted in hacker access to the personal information of church members and others.

In this file photo, the Salt Lake Temple of The Church of Jesus Christ of Latter-day Saints in Salt Lake City is seen on April 4, 2022 | Photo by Rick Bowmer, The Associated Press, St. George News

The cyber attack occurred in March 2022 when “unauthorized activity in certain computer systems” was detected that impacted the personal data of church members, employees, contractors and others. However, the breached data did not include online donation history or bank information, according to the church statement.

“Since that time, we have been working with U.S. federal law enforcement authorities and third-party cybersecurity experts to establish the origin, nature and scope of this incident and to mitigate possible impacts,” the church stated.

Though the breach occurred in March, law enforcement agencies investigating the situation asked the church not to share information about the incident until mid-October.

Specific information that may have been subject to the breach includes information provided on online accounts created by church members and employees. This may include usernames, membership record numbers, full names, gender, email addresses, birth dates, physical mailing addresses, phone numbers and preferred language.

“Law enforcement authorities believe the risk that the information will be used to harm individuals is low and our monitoring efforts have not identified any attempts of harmful use,” the church said.

Stock image by anyaberkut/iSTock/Getty Images Plus, St. George News

The church statement also reiterated that banking and donation information was not subject to the hack and that it has started to contact people impacted by the breach

“We have no indication that any of your personal data has been misused or published,” the church further stated.

“We recommend that you remain vigilant about the security of your personal data by monitoring your personal accounts, frequently changing passwords, selecting strong and different passwords for every account, and taking action on any suspicious activity. You should promptly report to law enforcement authorities any fraudulent activity, scam, or identity theft.”

Additional information can be found on the LDS church’s newsroom website.

Copyright St. George News, SaintGeorgeUtah.com LLC, 2022, all rights reserved.

ABOUT THE AUTHOR

Mori Kessler serves as a Senior Reporter for St. George News, having previously contributed as a writer and Interim Editor in 2011-12, and an assistant editor from 2012 to mid-2014. He began writing news as a freelancer in 2009 for Today in Dixie, and joined the writing staff of St. George News in mid-2010. He enjoys photography and won an award for photojournalism from the Society of Professional Journalists for a 2018 photo of a bee inspector removing ferals bees from a Washington City home. He is also a shameless nerd and has a bad sense of direction.

Email: [email protected]
Twitter: @MoriKessler@STGnews

Free News Delivery by Email

Would you like to have the day's news stories delivered right to your inbox every evening? Enter your email below to start!