Image

"It demonstrates cybercriminals’ willingness to repeatedly target the same victims and underscores that while responsible security habits are constructive, there is no perfectly secure system. It is thus incumbent upon organizations to regularly monitor their systems for breaches in addition to keeping up to date on patches."CentralSquare Technologies, the makers of Click2Gov, counters that only a "limited number" of Click2Gov customers have reported unauthorised access by hackers and that a vulnerability they identified in the portal has now been closed. According to media reports, in the case of the most recent breach involving water utility payments, the City of Waco was informed of the problem with the Click2Gov software on November 8, 2019. That was too late for those customers who had taken advantage of the convenient (but sadly unsecure) online payment portal. “Of the 44,000 water customers, typically we receive 12,500 payments online each month,” city spokesman Larry Holze said. “During the period identified, a little over 8,000 customers were mailed letters. Payments made with a credit card inside the water office (not online) are not involved in this incident.” Consumers impacted by the breach can expect to receive a letter from the city this week telling them about the incident and advising them on the steps that should be taken to protect against fraud. "We've sent out letters to all those people who they've been able to give us that have been compromised, in some fashion, asking them to be careful and watch their statements and make sure something doesn't show up," said spokesman Holze. The city has also set up a hotline for residents with questions about the breach, available from Monday to Friday on 833-947-1419.