Skip to main content

Hackers targeted DMV to expose personal data of 9.5 million people

A vulnerability in the MOVEit file transfer software has led to the infiltration of the personal records of millions of Americans across several states, according to Tech Radar.

The exploit has targeted the Department of Motor Vehicles (DMV) in Louisiana and Oregon. MOVEit software is used globally by several organizations, including many government agencies, and the vulnerability’s code has been connected to several data breaches, the publication added.

A dark mystery hand typing on a laptop computer at night.
Andrew Brookes / Getty Images

Approximately 6 million Louisiana residents have been affected by the cyberattack, with their vehicle registrations and driver’s licenses being exposed. These documents have revealed personal data including their “name, address, Social Security Number (SSN), birthdate, height, eye color, driver’s license number, vehicle registration information, and handicap placard information.”

Recommended Videos

Oregon has confirmed at least 3.5 million residents have had their driver’s licenses or state ID cards exposed in the breach, for a total of 9.5 million people affected.

Please enable Javascript to view this content

Both the states of Louisiana and Oregon have put out advisories to their residents to put a hold on their credit to head off any potential scams that could arise on their personal accounts. Citizens can do so through the Equifax, Experian, and TransUnion credit agencies.

Other standard recommendations include updating passwords and other login credentials on online tax preparation websites and software and establishing an Identity Protection Pin if you haven’t already. Those in the affected states should also ensure that their state benefits have not been tampered with, set up fraud alerts, and report any suspected identity theft.

As mentioned, the Louisiana and Oregon DMV breaches have not been isolated incidents. Other organizations affected by the MOVEit vulnerability include the U.S. Department of Energy and the Office of Personnel Management, the British Broadcasting Corporation (BBC), Transport for London, and British Airways.

Reports indicate that the ransomware group CL0P is behind the attacks. In other cases, organizations have offered up several millions of dollars in ransom to retrieve their data.

MOVEit told TechRadar that it has deployed security patches to its software and is cooperating with cybersecurity experts to help resolve the issue.

Bad actors have become very skilled in identifying exactly what sources are the best to attack. In April, the IRS-authorized tax preparation software service eFile.com suffered a JavaScript malware attack in the middle of tax season.

Fionna Agomuoh
Fionna Agomuoh is a Computing Writer at Digital Trends. She covers a range of topics in the computing space, including…
Here’s everything OpenAI announced in the past 12 days
A laptop screen shows the home page for ChatGPT, OpenAI's artificial intelligence chatbot.

OpenAI kicked off its inaugural "12 Days of OpenAI" media blitz on December 5, each day unveiling new features, models, subscription tiers, and capabilities for its growing ChatGPT product ecosystem during a series of live-stream events.

Here's a quick rundown of everything the company announced.
Day 1: OpenAI unleashes its o1 reasoning model and introduces ChatGPT Pro
OpenAI o1 and o1 pro mode in ChatGPT — 12 Days of OpenAI: Day 1

Read more
Get ready: Google Search may bring a pure ‘AI mode’ to counter ChatGPT
AI Overviews being shown in Google Search.

It is match point Google as the tech giant prepares to introduce a new “AI Mode” for its search engine, which will allow users to transition into an atmosphere that resembles the Gemini AI chatbot interface.

According to a report from The Information, Google will add an AI Mode tab to the link options in its search results, where the “All,” “Images,” “Videos,” and “Shopping” options reside. The AI Mode would make Google search more accessible and intuitive for users, allowing them to “ask follow-up” questions pertaining to the links in the results via a chatbot text bar, the publication added.

Read more
I tested Intel’s new XeSS 2 to see if it really holds up against DLSS 3
The Intel logo on the Arc B580 graphics card.

Although it technically arrived alongside the Arc B580, Intel quickly disabled its new XeSS 2 feature shortly after it was introduced. Now, it's back via a new driver update, and with a few fixes to major crashes issues. I took XeSS 2 out for a spin with the Arc B580, which has quickly climbed up the rankings among the best graphics cards, but does XeSS 2 hold up its side of the bargain?

XeSS 2 is Intel's bid to fight back against Nvidia's wildly popular DLSS 3. The upscaling component at the core of XeSS is the same, but XeSS 2 includes both a Reflex-like latency reduction feature and, critically, frame generation. The latency reduction, called XeLL, is enabled by default with frame generation.

Read more