CyberSecurity news

FlagThis

Bill Toulas@BleepingComputer //

Texas DOT Data Breach Exposes Crash Records

The Texas Department of Transportation (TxDOT) is alerting the public to a significant data breach that compromised nearly 300,000 crash records. The incident, discovered on May 12th, 2025, involved unauthorized access to its Crash Records Information System (CRIS). Texas officials revealed that a hacker gained entry through a compromised user account and proceeded to download a large volume of sensitive data. This data included personally identifiable information such as names, addresses, driver's license numbers, license plate numbers, and car insurance policy numbers.

The compromised crash reports contain detailed information about individuals involved in traffic accidents, including summaries of injuries sustained during the crash and narratives of the incidents. While TxDOT is not legally obligated to notify the public, it has chosen to proactively inform those affected by sending letters to individuals whose information was included in the stolen crash reports. TxDOT immediately disabled access from the compromised account upon discovering the unusual activity and launched an investigation into the matter.

The Texas Department of Public Safety is currently investigating how the breach occurred and is attempting to determine the identity of the responsible parties. TxDOT is urging individuals who may have been affected to be cautious of potential scams and fraudulent activities. Letters sent to victims advise them to be wary of unsolicited emails, texts, or calls related to past crashes, and a dedicated call line has been established to address any questions or concerns. The exposed data poses a significant risk of financial fraud and identity theft for those affected, as the compromised information can be valuable for malicious actors.
Original img attribution: https://www.bleepstatic.com/content/hl-images/2025/06/10/texas-flag.jpg
ImgSrc: www.bleepstatic

Share: bluesky twitterx--v2 facebook--v1 threads


References :
  • The Record: Texas said hackers compromised an account at the Department of Transportation (TxDOT). The agency discovered unusual activity on May 12 involving its Crash Records Information System (CRIS).
  • BleepingComputer: The Texas Department of Transportation (TxDOT) is warning that it suffered a data breach after a threat actor downloaded 300,000 crash records from its database.
  • bsky.app: Texas Department of Transportation (TxDOT) is warning that it suffered a data breach after a threat actor downloaded 300,000 crash records from its database.
  • The Register: Texas warns 300,000 crash reports siphoned via compromised user account
  • The Register - Security: Texas warns 300,000 crash reports siphoned via compromised user account
  • therecord.media: Texas officials said a hacker downloaded almost 300,000 crash reports after taking over an government employee account The crash docs include IDs, license plate numbers, summaries of injuries and more
  • securityaffairs.com: Texas Department of Transportation (TxDOT) data breach exposes 300,000 crash reports
  • www.bleepingcomputer.com: The Texas Department of Transportation is warning that it suffered a data breach after a threat actor downloaded 300,000 crash records from its database.
  • go.theregister.com: The Register reports Texas warns 300,000 crash reports siphoned via compromised user account.
  • securityaffairs.com: Hackers breached Texas DOT (TxDOT), stealing 300,000 crash reports with personal data from its Crash Records Information System (CRIS). The Texas Department of Transportation is a state agency that manages Texas’s transportation systems. It
Classification: