Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Application Security

Driver’s License Thefts Spur ADOT to Boost Online Safeguards

Arizona transportation officials announced enhanced security measures Thursday for a state website that identity thieves exploited to get dozens of duplicate driver’s licenses.

The Arizona Department of Transportation announced new safeguards after acknowledging to Azfamily.com this week that at least 164 drivers have been the victims of theft.

Arizona transportation officials announced enhanced security measures Thursday for a state website that identity thieves exploited to get dozens of duplicate driver’s licenses.

The Arizona Department of Transportation announced new safeguards after acknowledging to Azfamily.com this week that at least 164 drivers have been the victims of theft.

The cases go back to July 2018. The agency has also been involved in four criminal investigations that have led to 10 arrests.

Thieves were able to order driver’s licenses on ServiceArizona.com using little personal information and have them sent to another address. The licenses have been used to open bank accounts and credit card accounts, according to ADOT.

Now, the website will require more information including a license number to complete a transaction. Those without a number will have to go through a verification process at a Motor Vehicle Division office or over the phone.

Anyone who believes they were a victim will be able to replace their license with all new numbers.

Other steps the state is taking include the creation of an online fraud task force made up of cyber security and law enforcement experts. The group will look for recommendations to make to help prevent fraud. ADOT also plans to turn the website into a secure portal in December.

The agency has received criticism from victims for letting the website have lax security to begin with. Bob McPeters told Azfamily.com that a woman used his wife’s identity to try and transfer $160,000 into a fake bank account. They were able to stop the transaction before it was carried out.

Advertisement. Scroll to continue reading.

“How the hell can she get a driver’s license? We figured she had a fake ID. She didn’t. She had a real ID, Cindy’s real driver’s license,” McPeters said.

A suspect was arrested by Scottsdale police in February for mail theft. She was released but arrested again this summer for identity theft.

Eric Jorgensen, the director of the Motor Vehicle Division, said the website is necessary to serve the more than 6 million drivers.

“We have to be very careful as we approach any of these problems to make sure, I want to make sure we continue to be able to offer the service that our customers expect,” Jorgensen said.

Written By

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join the session as we discuss the challenges and best practices for cybersecurity leaders managing cloud identities.

Register

SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.

Register

Expert Insights

Related Content

Application Security

Cycode, a startup that provides solutions for protecting software source code, emerged from stealth mode on Tuesday with $4.6 million in seed funding.

Data Protection

The cryptopocalypse is the point at which quantum computing becomes powerful enough to use Shor’s algorithm to crack PKI encryption.

Artificial Intelligence

The CRYSTALS-Kyber public-key encryption and key encapsulation mechanism recommended by NIST for post-quantum cryptography has been broken using AI combined with side channel attacks.

Compliance

The three primary drivers for cyber regulations are voter privacy, the economy, and national security – with the complication that the first is often...

Data Protection

While quantum-based attacks are still in the future, organizations must think about how to defend data in transit when encryption no longer works.

Application Security

Virtualization technology giant VMware on Tuesday shipped urgent updates to fix a trio of security problems in multiple software products, including a virtual machine...

Application Security

Fortinet on Monday issued an emergency patch to cover a severe vulnerability in its FortiOS SSL-VPN product, warning that hackers have already exploited the...