Vertafore disclosed that information of 27.7 million Texas drivers was exposed in a data breach due to a human error.
The security breach was disclosed by the company this week in which the data was stored on an unsecured external storage service and were accessed by an external party.
The data leaked includes Texas driver license numbers, names, dates of birth, addresses, and vehicle registration histories. However, the Social Security numbers or financial account information were not exposed.
According to the breach notification, three data files were inadvertently stored in an unsecured external storage service that appears to have been accessed without authorization. They stated that no information misuse has been identified.
The incident took place on March 11, and the data were secured on August 1. The company initiated an investigation into the security incident which confirmed that the files had been accessed by an unauthorized third party.
The exposed files contained information on driver’s licenses issued before February 2019 as these data was held by the company through its insurance rating software product.
The company assured that customer data or any other data belonging to partners, vendors, or other suppliers were not affected by the breach.
Vertafore hired an intelligence firm to investigate the incident and the process is going on. They have also reported the incident to relevant authorities including the Texas Attorney General, the Texas Department of Public Safety, the Texas Department of Motor Vehicles, and federal law enforcement.
The company has started notifying Texas drivers whose data was exposed in the security breach. They are also offering them one year of free credit monitoring and identity restoration services.
Besides the company also said that even though no financial information was impacted, it is always better to be vigilant and check the account statements for any suspicious activity.