Information of 200,000 uncovered in 2023 ransomware assault



Dallas County is notifying over 200,000 people who the Play ransomware assault, which occurred in October 2023, uncovered their private knowledge to cybercriminals.

Dallas County is the second largest county in Texas, with over 2.6 million residents.

In October 2023, the Play ransomware gang added Dallas to its extortion portal on the darkish net, threatening to leak knowledge it stole throughout an assault on its programs, together with personal paperwork from numerous departments.

Dallas acknowledged the incident by way of a press release on its web site a number of days later and guaranteed the general public they had been reviewing the leaked knowledge when Play printed it in early November.

Because the leaked knowledge evaluation took a variety of time and folks had been involved, Dallas arrange a devoted name middle in January 2024.

Yesterday, Dallas County posted an replace concerning the incident on its web site and despatched knowledge breach notices to 201,404 impacted people, together with Dallas residents, workers, and others who interacted with its public providers.

The forms of knowledge confirmed to have been uncovered range per particular person and embrace the next:

  • Full identify
  • Social Safety quantity (SSN)
  • Date of beginning
  • Driver’s license
  • State identification quantity
  • Taxpayer identification quantity
  • Medical info
  • Medical insurance info

These whose SSNs and taxpayer identification numbers had been uncovered will obtain two years of credit score monitoring and id theft safety providers.

In response to the breach, Dallas County has applied a number of security-strengthening measures on its networks, together with deploying Endpoint Detection and Response (EDR) options throughout all servers, forcing password resets, and blocking malicious/suspicious IP addresses.

Dallas’ cybersecurity struggles

Dallas County and the Metropolis of Dallas have each handled a number of damaging cybersecurity incidents not too long ago.

In November 2023, a Dallas County worker fell sufferer to a social engineering assault by enterprise e-mail compromise (BEC) scammers and despatched a fraudulent fee of $2,400,000.

In Could 2023, the Metropolis of Dallas suffered a breach from Royal ransomware, which pressured it to take offline elements of its IT infrastructure, together with police communications.

BleepingComputer realized on the time that Royal was printing ransom notices on the Metropolis’s printers, which had fallen underneath the attackers’ management.

It was later established that Royal operators leveraged stolen account credentials to take care of entry to the compromised programs between April 7 and Could 4, throughout which they exfiltrated over 1 TB of information.