December will be one year since the Eagle Pass Water Work System EPWWS computer systems main servers were hacked into and breached.
Back then EPWWS General Manager Jorge Barrera informed the community that the hackers breached one of the main systems used by the organization multiple times since late November and into early December 2017. The hack with the database company Equifax went on for more than six weeks according to a congressional investigation.
The incident was reported to the Federal Bureau of Investigation (FBI) and continues being investigated.
The EPWWS system may have been compromised by a security breach and possibly sensitive personal information remained in the database at the time of the breach, including customer social security numbers, home addresses, payment information as well as employee information, telephone numbers, and payroll information.
The hack/breach and possible theft of sensitive information could have affected all waterworks system customers and employees, including individuals who use the city’s website to make a payment.
The company where the hack originated was Equifax who suffered one of the largest breach of information in U.S.history exposing
the financial information of more than 145 million Americans.
A congressional investigation was launched but no enforcement actions have been taken against the giant credit-reporting agency.
The company remains in business and has even recovered after stock fell and has even reported a profit of $236 million this year despite the breach.
Equifax officials admitted to many mistakes such as an outdated list of computer systems administrators and non-action to act on software vulnerability.
Equifax has said that its taken steps to fix the issues that allowed the breach to occur including a possible increased investment in security and technology by more than $200 million this year.
The company has given consumers more control over their Equifax data including setting up a free credit-alert service.
An investigation into the matter is ongoing into the theft of information but is unclear if the FBI, the Consumer Financial Protection Bureau and the Federal Trade Commission is looking into the actions of the company and its executives.
The hackers who stole personal information from millions of people have not been identified.