HACKERS BREACH CLICK2GOV SOFTWARE TO STEAL THOUSANDS OF CREDIT CARD RECORDS

SOURCE: FORTUNE.COM

By  JEFF JOHN ROBERTS

December 18, 2018

Paying parking tickets or municipal water taxes is never fun—and it’s even worse when hackers have compromised your town’s payment system. Yet, that’s what happened in dozens of towns across the U.S. where cyber crooks have made off with the personal data of nearly 300,000 people.

Security research firm Gemini Advisory published a report Tuesday that provides new details on how vulnerabilities in Click2Gov, a widely used type of government payment software, has affected towns from Oceanside, Calif. to Sarasota, Fla.

The vulnerability has let hackers get onto the payment networks and steal credit card and debit card data when citizens use town websites to pay fines, taxes, and permits.

Reports

 of vulnerabilities in Click2Gov first surfaced in 2017 and, in September, cyber security giant FireEye confirmed the attacks were a nationwide problem.

The new Gemini report provides additional details about the extent of the hacks, and what the crooks are doing with the data. According to the firm, at least 294,929 payment records have been compromised in 46 U.S. cities, while criminals have earned $1.7 million selling the data on the dark web—typically for $10 per record.

Gemini’s Director of Research, Stas Alforov, told Fortune that Click2Gov has worked with many of the affected towns to patch the software, and that the breaches have arisen in part because of a lack of sophistication on the part of municipal IT workers.

The company that licenses the Click2Gov software, known as CentralSquare Technologies, did not immediately respond to a request for comments about the breach.

For the citizens using Click2Gov to honor their civic obligations, the breaches will not likely result in a financial loss since banks and credit card companies typically foot the bill in the case of stolen data. But the incidents do mean all of the aggravations that go with identity theft, including the need to replace their cards and possible damage to their credit scores.

Gemini’s Alforov says that many of the towns have addressed the Click2Gov vulnerabilities, but others have not, meaning the data exfiltration is ongoing.

Alforov added that the hackers behind the breaches do not appear to be particularly sophisticated, but that they have nonetheless figured out how to profit from the weak security of local governments.

Gemini was able to identify the affected municipalities by examining the addresses related to the stolen cards. Other affected towns include Laredo, Texas, Topeko, Kans. and Medford, Ore. A full list is available here.

Views: 52

Comment

You need to be a member of 12160 Social Network to add comments!

Join 12160 Social Network

"Destroying the New World Order"

TOP CONTENT THIS WEEK

THANK YOU FOR SUPPORTING THE SITE!

mobile page

12160.info/m

12160 Administrators

 

Latest Activity

FREEDOMROX posted a blog post
7 hours ago
cheeki kea favorited Doc Vega's blog post The Many Keys to Deadly Secrecy in our Government
22 hours ago
cheeki kea commented on cheeki kea's photo
23 hours ago
cheeki kea posted a photo
23 hours ago
cheeki kea replied to cheeki kea's discussion Tartaria
"Greetings to you John, You're right and it didn't take long for those manuals to totally…"
yesterday
Doc Vega posted a blog post

The Many Keys to Deadly Secrecy in our Government

We now know thanks to the legislation of FOIA access to federal documents and evidence and the…See More
yesterday
Less Prone favorited tjdavis's photo
yesterday
Less Prone favorited rlionhearted_3's photo
yesterday
John Miller commented on rlionhearted_3's photo
Thumbnail

Another incredibly Stupid!! What, no mirrors?

"Brutal post... not sure it’s helping anyone though."
Tuesday
John Miller replied to cheeki kea's discussion Tartaria
"Tartaria: the empire that built half the world's cathedrals, then vanished because someone…"
Tuesday
Burbia commented on rlionhearted_3's photo
Thumbnail

Another incredibly Stupid!! What, no mirrors?

"This movie portrayed plastic surgery as absurd. I guess the numbers in the real world are growing."
Tuesday
Burbia commented on tjdavis's photo
Thumbnail

Redux

"Ah yes, General Jussitri Smolletkov. Good tongzhi. Good tongzhi."
Tuesday
Doc Vega posted a blog post

Unusual Discoveries and Headlines

Archaeologists have discovered an ancient tool dated to be 6,000 years old, but even more…See More
Monday
tjdavis posted a video

Inside Texas HOMELESS HELL – Even Cops Don't Dare Step In! - Documentary

In this powerful documentary, we explore the escalating Texas homeless crisis 2025, where cities and rural areas alike are witnessing a disturbing rise in th...
Monday
tjdavis posted a photo
Monday
John Miller replied to MAC's discussion BREAKING! UFO whistleblowers drop BOMBSHELL on D.C. | Redacted with Natali and Clayton Morris
"Crazy how these whistleblower stories are finally making it into bigger conversations. Makes you…"
Sunday
Burbia favorited tjdavis's blog post The Dems Love Their Demons
Sunday
John Miller commented on tjdavis's photo
Thumbnail

Comprehensive Coverage

"That car needs an exorcism, not an oil change."
Saturday
John Miller commented on tjdavis's blog post The Dems Love Their Demons
"If the Dems are dating demons, then that AI romance shoot was basically engagement photos."
Saturday
John Miller replied to cheeki kea's discussion Would-Be Trump Assassin Ryan Routh Gave Many Interviews with Mainstream Media
"Wouldn't be surprised if there's a whole lot more buried under the surface here."
Saturday

© 2025   Created by truth.   Powered by

Badges  |  Report an Issue  |  Terms of Service

content and site copyright 12160.info 2007-2019 - all rights reserved. unless otherwise noted