Oahu Transit Services reports ransomware attack, customer data potentially compromised
Learn More
Oahu Transit Services (OTS), which manages TheBus and Handi-Van services in Honolulu, has reportedly fallen victim to a ransomware attack, potentially compromising personal data of its users.
The breach began at 1 a.m. on Saturday 15th of June 2024 and caused disruption in OTS's operations. Systems and phones were taken offline, and OTS promptly disconnected from other systems to prevent further intrusion. Despite the breach, bus and Handi-Van services continue to run their routes, though websites, GPS, and the Holo card system have been shut down to safeguard user data.
Falcon Feeds, a cybersecurity firm based in India, reported that the ransomware group DragonForce claimed responsibility for the attack and boast that they have stolen 800,000 records. DragonForce has given OTS ten days from Tuesday to pay the ransom. The leaked data reportedly includes:
- Names
- Addresses
- Bus or Handi-Van card ID types
No comment or details about the attack or number of affected individuals are provided by OTS.
A director of the city Department of Transportation Services, claims that OTS has not paid any ransom and is working to restore systems methodically, disinfecting workstations to ensure no lingering threats.
The incident is a second breach OTS has experienced in three years. The FBI and Honolulu Police Department (HPD) are currently investigating the situation.
