Watch Now


California DMV warns of ransomware attack on address verification contractor

AFTS confirmed attack but said investigation into data breach is ongoing

California DMV vendor, AFTS, which was targeted by a recent ransomware attack, had access to the past 20 months of California vehicle registration records. Photo: Jim Allen/FreightWaves

The California Department of Motor Vehicles (DMV) is warning customers that a vendor it uses to verify personal and commercial vehicle registration addresses was targeted by a ransomware attack in early February.

The DMV issued a statement on Wednesday cautioning customers about the data breach involving a Seattle-based contractor, Automatic Funds Transfer Services (AFTS), it has used since 2019 to cross-reference addresses with the U.S. Postal Service’s national database for vehicle renewal notices.

Jason Feldman, compliance officer with AFTS, confirmed the attack to FreightWaves, stating the company’s compromised network was taken offline within hours of discovering the breach. The company also notified law enforcement agencies, which are looking into the attack, he said. 

He told FreightWaves on Thursday that he wasn’t aware the DMV had alerted customers to the ransomware attack at AFTS.


“We immediately took the compromised network offline and we’ve hired a new company to build us a brand-new network from the ground up,” Feldman told FreightWaves. “We’ve hired a forensic IT team that is looking at our old compromised network to investigate and determine the scope and nature of the breach.”

Feldman said he couldn’t comment on the group behind the attack, how much money the hackers requested and whether his company paid the ransom.

“These are sophisticated actors, who locked us out of our data and wanted us to pay for a key to unlock that data,” Feldman said.

At this point, Feldman said he “doesn’t know the level of personal-protected information, if any, is involved and whether the California DMV has been impacted by this.”


The DMV said its systems have not been compromised, but that AFTS had access to the past 20 months of California vehicle registration records, containing names, addresses, license plate numbers and vehicle identification numbers. 

However, AFTS did not have access to customers’ Social Security numbers, birthdates, voter registration, immigration status or driver’s license information, the DMV said.

“We are looking at additional measures to implement to bolster security to protect information held by the DMV and companies that we contract with,” Steve Gordon, director of the California DMV, said in a statement. 

In the meantime, the DMV is contracting with a different address verification company. 

Although there’s been no indication that information that may have been accessed by the ransomware attack has been used for “any nefarious reason,” the DMV is urging customers to report any suspicious activity to law enforcement.

City officials in Kirkland, Washington, alerted customers in early February of a potential data breach involving AFTS, which processes the company’s utility billing. 

Click for more articles by Clarissa Hawes.
Louisiana ransomware attack disrupts trucking operations
Oilfield supervisor admits lining pockets with $400,000 of Petco’s money
Judge slaps wholesale distribution company with $23.7M ‘nuclear verdict’ in crash

Also, check out the latest episode of our true crime podcast here: Profits drive log fraud in trucking — Long-Haul Crime Log


19 Comments

  1. Dr. Willycurry

    My name is Dr Williams Curry, Medical Field, Sharing my experience, for any one who needs a trusted Hacker, who helped me change my Medical School Grade, His good on credit score, “Joe Engressia”.
    Reach him on Whatsapp: +1(732) 639–1527.
    Email: [email protected]
    digitaldawgpoundhackergroup.blogspot.com.
    Regards

  2. ALEXANDRA BROOKLYN

    Hello everyone,

    I want to testify about Luis Carlos who help me invest my bitcoin and made me who i am today, i never believe in bitcoin investment till i met Luis Carlos, I saw so many testimony about Luis Carlos helping people to invest their bitcoin, So i decide to contact him and invested $500 and after 7 days i receive my profit of $5,000 on my bitcoin wallet, Ever since i have been investing with them and i always receive my profit without any delay, so if you want to invest your bitcoin, Luis Carlos is the best trader you can invest with and getting your profit is guarantee, So if you want to invest just contact them and they will guide you on how start your investment . Email: [email protected] or WhatsApp : +16234044993

  3. CHERISH SMITH

    I sincerely don’t like the idea of saying this online but this is my way of saying thank you to a friend who recommended this professional hacker to me at ([email protected]) I hired this hacker for a very private and difficult matter of helping me hack my spouse’s phone and social networks and some other personal profiles, This hacker far exceeded my expectations, He helped me get access into my spouse whatsapp, facebook, text messages, call logs etc faster and cheaper than I had imagined. The first time we spoke, we had a very long phone conversation and he gave me all options that he could think of to resolve my case, and he even recommended I try some options on my own before hiring him, which shows that he is honest, I decided to hire him and i’m so glad I did.. If you need a professional, reliable and efficient hacker, then you should contact this man; [email protected], You can also call him or send him a text with his whatsapp number +1(774)549-8610. He is a fantastic investigator and a great person, contact him and let him know i referred you.

Comments are closed.

Clarissa Hawes

Clarissa has covered all aspects of the trucking industry for 16 years. She is an award-winning journalist known for her investigative and business reporting. Before joining FreightWaves, she wrote for Land Line Magazine and Trucks.com. If you have a news tip or story idea, send her an email to [email protected].