BATON ROUGE, La. - The Louisiana Department of Public Safety and Corrections, Public Safety Services, Office of Motor Vehicle (OMV) has taken immediate action in response to a data security incident involving the personal information of individuals who applied for or received a Louisiana driver's license, identification card, and/or vehicle registration. The incident was linked to a zero-day vulnerability in the MOVEit managed file transfer platform, developed and supported by Progress Software Corporation, which allowed unauthorized access to and acquisition of data.
Upon discovering the breach on May 31, 2023, OMV swiftly secured the MOVEit environment used for file transfers. An extensive investigation revealed that unauthorized individuals had acquired and accessed files containing sensitive personal information. The compromised data included varying combinations of names, addresses, dates of birth, Social Security numbers, driver's license numbers, learner's permit numbers, identification card numbers, height, eye color, vehicle registration details, and handicap placard information. OMV is taking proactive measures to inform and assist affected individuals. Notices are being emailed to those whose information was involved in the incident, and a dedicated, toll-free call center (866.861.8717) has been set up to address any inquiries. OMV offers twelve (12) months of free credit monitoring and identity theft protection from LifeLock to support further the affected Louisiana residents. Individuals who believe their information may have been compromised are urged to visit https://nextsteps.la.gov/substitute-notice for more information about the incident and to sign up for credit monitoring and identity theft protection services. OMV advises individuals to monitor their financial statements and credit reports for any signs of unauthorized activity or potential fraud. In case of any suspicious activity, it is essential to promptly contact the relevant financial institution or the credit bureau reporting the incident. In response to this cyber breach, OMV has taken additional security measures and implemented safeguards to fortify and monitor the MOVEit environment, aiming to prevent similar incidents in the future.