Aurora water department hack may have resulted in stolen personal data, city says

1695

AURORA | The city of Aurora water department says some residents may have had their personal information, such as name, billing address and credit card number, compromised when making a payment through the Click2Gov system. 

Residents who made payments between August 30 and October 14 may be affected.

“Through our investigation, we learned that the unauthorized actor, not associated with the City, modified a piece of computer code that the Click2Gov software uses,” the department said in a news release Monday. “This modified code was designed to capture limited personal information such as first and last name, billing address, payment card type, payment card number, payment card verification value and payment card expiration date.”

No Social Security or government-issued identification numbers were compromised, as they aren’t required for billing purposes. 

The department said it believes it has eliminated the security threat and is notifying those who may have had their information compromised by mail. 

“Aurora Water is committed to protecting the security of our customers’ information and the integrity of our payment systems is of the highest importance,” the department’s release said. “We would like to remind customers who pay their bills online that it is good practice to review their bank and credit card statements carefully and report any unusual activity to their financial institutions.”

The department has set up a website where updates on the incident will be posted. Find it here: AuroraGov.org/C2GAdvisory