Law enforcement and the
The breach could potentially affect all Californians who registered a vehicle within the last 20 months, with an estimated 38 million records compromised, DMV spokeswoman
"We are investigating this recent data breach ... in order to quickly provide clarity on how it may impact Californians," DMV Director
The DMV immediately stopped all data transfers to the company after being notified of the potential breach.
Representatives for Automatic Funds were not available for comment. The company's website was down "due to technical issues" on Thursday.
Gore said customers' social security numbers, payment information, birthdates, voter registration information, immigration status and driver's license information was not compromised because the DMV did not share this data with the vendor.
The DMV has contracted with Automatic Funds since 2019 to cross-reference customer's addresses with the
DMV officials are reviewing the company's processes to determine what security enhancements are needed to prevent future breaches.
"While the DMV Investigations branch has no indication at this time that information accessed by the ransomware attack on AFTS has been used by the attackers for any nefarious reason, the DMV urges customers to report any suspect activity to law enforcement," Gore said.
(c)2021 the San Francisco Chronicle. Distributed by Tribune Content Agency, LLC.