Vertafore claims the incident resulted from human error since the data was stored on an unprotected external storage service.
Insurance software firm Vertafore became a victim of a data breach that exposed personal details and license records of 27.7 million Texas drivers.
Vertafore disclosed details of the breach, revealing that three files were mistakenly stored on an unprotected third-party service, which was later accessed by unauthorized individuals.
See: Hotel reservation platform leaked data from top online booking sites
The company stated that the files included “driver information for licenses issued before February 2019, contained Texas driver license numbers, as well as names, dates of birth, addresses, and vehicle registration histories.”
Vertafore also confirmed that the files didn’t contain Social Security numbers or financial details. Moreover, there is no evidence that the data was misused or the system hosting the data were affected in the breach. They also didn’t identify any system vulnerabilities.
However, since the company has acknowledged “potential unauthorized access to the three data files,” there are chances that the data can end up online.
Nevertheless, after detecting the issue, Vertafore immediately secured the potentially compromised files, and an investigation was initiated in collaboration with a renowned consulting firm to identify the extent of the impact.
We have set up this dedicated website and a call center with additional information about this event, our response, and these services. The call center can be reached by calling 888-479-3560 between the hours of 8 a.m. to 5:30 p.m. CT Monday through Friday. We sincerely regret any inconvenience this may cause, the company said in a statement.
The Texas Attorney General, Texas Department of Motor Vehicles, Texas Department of Public Safety, and U.S. federal law enforcement have been notified about the incident.
See: Hacker selling State of Louisiana Drivers’ Licence Database
The company couldn’t identify the reason behind the data breach, but it acknowledged that it occurred between March 11th and August 1st, 2020. Vertafore will offer free credit monitoring and identity restoration services to affected customers for a year.
Did you enjoy reading this article? Do like our page on Facebook and follow us on Twitter.