There has been a security breach at the Department of Motor Vehicles, which may have exposed the vehicle registration information of millions in California. According to the DMV, the vehicle registration records may have been involved in the security breach of a contractor, Automatic Funds Transfer Services (AFTS), used by the DMV. AFTS was the victim of a ransomware attack earlier this month and it may have compromised the information provided to AFTS by the DMV. This would include the last 20 months of California vehicle registration records. DMV spokesperson Anita Gore said that the state agency is currently notifying customers about the ransomware attack.
“It does not include social security number. It does not include driver’s license information so there’s no financial information at all. We know that this third party had a ransomware attack. They held onto some of our information but we have no indication that anybody has done anything nefarious with that information.”
Registration records include names, addresses, license plate numbers and vehicle identification numbers. According to the DMV, AFTS doesn't have access to driver license information, Social Security numbers, birthdates, voter registration, or immigration status. As soon as the DMV was notified of the breach, it stopped all data transfers to AFTS and notified law enforcement, including the FBI.
DMV Director Steve Gordon said in a press statement,
“Data privacy is a top priority for the DMV. We are investigating this recent data breach of a DMV vendor in order to quickly provide clarity on how it may impact Californians. We are looking at additional measures to implement to bolster security to protect information held by the DMV and companies that we contract with.”
Customers are urged to report any suspicious activity to law enforcement.
What do you think about this?
Photo Credit: Getty Images