Hackers Steal Data on Millions of Oregon, Louisiana Driver’s License Holders

The personal details of millions of Oregon and Louisiana residents have been exposed after a notorious ransomware gang breached the states’ DMV services using a known vulnerability in a popular file-transfer service.

On Thursday, Oregon’s Department of Transportation warned(Opens in a new window) that hackers had breached the state agency’s systems to steal personal details on 3.5 million ID and driver’s license holders.

Louisiana’s Office of Motor Vehicles issued a similar alert(Opens in a new window), saying that “all Louisianans with a state-issued driver’s license, ID, or car registration” had their data exposed to the hackers. Compromised details include Social Security number, address, and driver’s license number. 

The departments were breached because both use MOVEit, a file-transfer software from the company Progress. Last month, ransomware gang CL0P began exploiting(Opens in a new window) a newly uncovered zero-day vulnerability in the software to steal data from MOVEit databases. 

The attacks mean CL0P could potentially breach hundreds of companies and organizations that rely on the file-transfer software. On Thursday, US cyber authorities warned(Opens in a new window) that several federal government agencies had also been compromised, without providing more details.  

The fallout could ensnare numerous consumers across the US, especially since CL0P says it will post the stolen information on its dark web site unless it receives a payment. Stolen ID numbers and other personal details can make it easy for fraudsters to commit identity theft scams on vulnerable victims.  

The US Cybersecurity and Infrastructure Security Agency (CISA) has been urging companies to patch(Opens in a new window) the MOVEit flaw since it was first detected. But the damage appears to be done. CL0P posted(Opens in a new window) the names of dozens of organizations it allegedly breached using the vulnerability.

Recommended by Our Editors

That said, the CL0P group is indicating it’s deleting data stolen from US government agencies. “WE DON’T HAVE ANY GOVERNMENT DATA AND ANYTHING DIRECTLY RESIDING ON EXPOSED AND BAD PROTECTED NOT ENCRYPTED FILE TRANSFER WE STILL DO THE POLITE THING AND DELETE ALL,” the gang wrote on its site, probably in an attempt to avoid a harsh crackdown from the FBI. CL0P also refrained from identifying the Oregon or Louisiana DMVs as compromised organizations.

In the meantime, Oregon’s Department of Transportation is warning affected users to be on guard against cybercriminals potentially misusing their stolen personal details. For tips on protecting yourself from a data breach, check out our guide.

SecurityWatch newsletter for our top privacy and security stories delivered right to your inbox.”,”first_published_at”:”2021-09-30T21:22:09.000000Z”,”published_at”:”2022-03-24T14:57:33.000000Z”,”last_published_at”:”2022-03-24T14:57:28.000000Z”,”created_at”:null,”updated_at”:”2022-03-24T14:57:33.000000Z”})” x-show=”showEmailSignUp()” class=”rounded bg-gray-lightest text-center md:px-32 md:py-8 p-4 mt-8 container-xs” readability=”31.423799582463″>

Like What You’re Reading?

Sign up for SecurityWatch newsletter for our top privacy and security stories delivered right to your inbox.

This newsletter may contain advertising, deals, or affiliate links. Subscribing to a newsletter indicates your consent to our Terms of Use and Privacy Policy. You may unsubscribe from the newsletters at any time.

Facebook Comments Box

Visits: 0