WACO, TX — The City of Waco is advising residents of a data breach and security incident that occurred with its online payment system.
On November 8, the city learned from its third-party vendor that resident's who entered information into its Click2Gov payment system between August 30 and October 14 could have had their information stolen.
Information such as name, address, payment card number, expiration date and CVV could have been compromised.
According to city officials, a piece of malicious code was inserted into the Click2Gov site, allowing user's data to be breached.
The city immediately initiated an investigation upon learning of the incident from it's third-party vendor. The city is also working with law enforcement on a criminal investigation into the matter.
They are also working with their vendor to identify every person who's data could have been copied during the breach.
"We will be providing all affected individuals notice via letter during the week of December 8, 2019. The notice will include information about the event, measures we have taken in response, and recommendations for protecting personal information in the future. In the meantime, we encourage all Waco residents to monitor all financial transactions/statements and promptly report any suspicious or unusual charges to the relevant banking institutions," said the city in a release.
Officials say they have taken steps to better secure City of Waco systems in the future, including its online payment portal.
The city has set up a dedicated phone assistance line at 833-947-1419 to take questions about the incident. You can call the number Monday through Friday from 8:00 a.m. to 8:00 p.m. CST.