Top Class Actions’s website and social media posts use affiliate links. If you make a purchase using such links, we may receive a commission, but it will not result in any additional charges to you. Please review our Affiliate Link Disclosure for more information.
An estimated 38 million records may have been compromised in a cyberattack affecting the California DMV earlier this month, according to a recent statement by agency officials.
This comes after an outside vendor, Automatic Funds Transfer Service (AFTS), was reportedly targeted in a ransomware attack. While California DMV records were not directly accessed, officials warned that data thieves may have gotten ahold of vehicle registration records held by AFTS, including names, addresses, plate numbers, and VINs.
Though there has not yet been a class action lawsuit filed over the reported California DMV data breach, Top Class Actions will continue to monitor this developing story to help keep consumers informed.
In a statement, a DMV spokesperson said that the California DMV hack was going on, undetected, for at least 20 months, potentially compromising any Californian who registered a vehicle during that time.
“We are investigating this recent data breach…in order to quickly provide clarity on how it may impact Californians,” DMV Director Steve Gordon said in a statement. “We are looking at additional measures to implement to bolster security to protect information held by the DMV and companies that we contract with.”
The Seattle-based tech company AFTS has handled change of address verification for the California DMV system since 2019, according to Tech Crunch. The service is reportedly used across the country to verify addresses, as well as process payments and invoices.
The company reported that it was the victim of a ransomware attack, with cyber thieves gaining access to data and then locking the company out. The hackers demanded money for AFTS to gain access to its system, but the company reportedly declined to indicate how much money or if they paid the ransom demand.
“While the DMV Investigations branch has no indication at this time that information accessed by the ransomware attack on AFTS has been used by the attackers for any nefarious reason, the DMV urges customers to report any suspect activity to law enforcement,” DMV spokesperson Anita Gore reportedly said in the announcement.
Are you concerned that your information was exposed in the California DMV data breach? Tell us what you think in the comment section below.
Read About More Class Action Lawsuits & Class Action Settlements:
38 thoughts onMillions of California Drivers’ Information May Have Been Exposed in DMV Breach
Please add me
I’m definitely concerned about this issue because it doesn’t take much to due a bill of sale and forge the documents online with DMV’s expanded list of online services. Title transfers, release of liability, and filing for a lost title are all available online thru their website. Not just that but the article also stated that the company handled some of the payments made for registration so does also mean that those who paid by credit cards or debit to their bank accounts information would also be ecposed?! Definitely, would keep an eye on any fruad happening to accounts during these 20 months that our information was exposed. If the company is declining to state as to whether they paid the ransom or how they obtain access back in to their program then my guess too is that they are being totally forthcoming as to how much was exposed in the breach either.I bet it’s worse than they are saying and are playing damage control first to cover their asses. I fully want to be invovled if a class action evolves from this breach.
Add me, concerned!
Please add me to DMV list. Is there anything else to fill out?
My next question is my son & I have submitted phone call violations from creditors, and recorded messages from a Suzy regarding our Auto warranty, however I do want to say we have received 4 more calls (2 each) from the recorded message Suzy.
Is it okay to add here? If not then where? I want to list all I can, especially if we’re getting paid per call. Thank you Scott.
Mark Arsanis, please add me to your DMV class
Add Me
It’s just wrong. The dmv allows for a person to change their address online, request a replacement driver’s license online, but doesn’t allow you to request a replacement id online. Now it turns out changing your address data was hacked? They should also be looking for instances where addresses were fraudulently changed. That maneuver mightve enabled some of that unemployment fraud.
Add me
Add
Add me these breaches cause nothing but problems
Add me. Calif DMV has always sold drivers information.