The Texas Department of Insurance is a regulatory agency that makes sure that insurance companies and any other company that provides insurance-type services are following the rules of the state. They work in tandem with the Texas Attorney General’s office to ensure that they are properly representing the laws.
The Texas Department of Insurance has joined the list of entities that have been digitally violated. Hackers accessed the government department's internal systems. However, the insurance data leak was not revealed until a state audit occurred in the spring of 2022.
The Texas Department of Insurance refused to go into detail about how the breach occurred, as doing so is a prudent strategic move designed to mitigate the potential for a copycat attack. However, a representative from the department insisted the issue in question was rectified quickly after it was initially pinpointed in January.
The tidbits of information about the attack revealed to the public highlight an issue deep within web application programming code. The application in question was used to manage workers' compensation claims. The flaw within the code opened the door for the general public to view components of the online application.
This breach occurred from May 2019 through January 2022.
Residents of Texas are the victims of the breach. The victims' names, Social Security numbers, dates of birth, contact information, and additional personal information were stolen. The abovementioned department audit wrapped up in the spring, yet the public did not find out about the data theft until several months later.
All in all, the files of nearly two million hardworking Texans were accessed in the attack, reinforcing the need to upgrade digital defenses at least once yearly.