Texas Department of Transportation suffered another data security incident in May 2022 after an individual posted two posts regarding the incident on a hacking-related forum.
The first post included a screencap of an employee’s setup with the employee’s personal information, including SSN, ogin credentials, and the url for the state’s contractor’s payment system, and the second post included a screencap showing listings of a contractor’s projects.
According to the person had acquired more than 7,000 individuals’ records which he intended to put on sale.
TPRM report: https://scoringcyber.rankiteo.com/company/texas-department-of-transportation
"id": "tex24811822",
"linkid": "texas-department-of-transportation",
"type": "Breach",
"date": "05/2022",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"{'affected_entities': [{'industry': 'Transportation',
'location': 'Texas, USA',
'name': 'Texas Department of Transportation',
'type': 'Government Agency'}],
'attack_vector': 'Unknown',
'data_breach': {'number_of_records_exposed': '7,000',
'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personal Information',
'Login Credentials',
'Project Details']},
'date_detected': 'May 2022',
'description': 'In May 2022, the Texas Department of Transportation '
'experienced a data security incident where an individual '
'posted on a hacking-related forum, exposing employee personal '
'information, login credentials, and project details. The '
'individual claimed to have acquired more than 7,000 '
"individuals' records which they intended to sell.",
'impact': {'data_compromised': ['Personal Information',
'Login Credentials',
'Project Details']},
'initial_access_broker': {'data_sold_on_dark_web': True},
'motivation': 'Financial Gain',
'references': [{'source': 'Cyber Incident Description'}],
'threat_actor': 'Unknown',
'title': 'Texas Department of Transportation Data Security Incident',
'type': 'Data Breach'}