Advertisement
Subscribe to our daily newsletter.
Subscribe

Texas data breach affected nearly 45,000 natural disaster victims

A "software misconfiguration" compromised the personal data of nearly 45,000 Texas residents who applied for state natural disaster relief.

By

Listen to this article
0:00
Learn more. This feature uses an automated voice, which may result in occasional errors in pronunciation, tone, or sentiment.
texas belt buckle
(Getty Images)

The Texas General Land Office suffered a data breach over the summer that compromised the personal data of nearly 45,000 residents who’d applied for state natural disaster relief over the last 10 years.

State officials said the breach, which affected 44,485 people, was caused by a “software misconfiguration” on a system known as the Texas Integrated Grant Reporting system. The incident resulted in allowing applicants see others’ private information, the Austin American-Statesman reported last week.

The Texas General Land Office is the state’s agency that manages state-owned lands and mineral rights properties as well as the state’s Permanent School Fund.

The “misconfiguration” was discovered in late July and announced on Aug. 19 when a disclosure was published on the website of the state’s attorney general. While the attorney’s general disclosure states that 44,485 people were affected, the Austin American-Statesman reported that a spokesperson for the General Land Office said the agency does not yet know exactly how many people had their data made public when the issue began.

Advertisement

The spokesperson also confirmed that those affected had applied for state assistance to recover from natural disasters between 2015 and 2024. The particular state grant enabled relief for home repairs, rebuilding and buyouts following disasters such as floods and storms. The dataset of relief applicants, however, did not include those impacted by the recent deadly flooding across Central Texas, the spokesperson added.

Texas has dealt with its fair share of data breaches and cybersecurity incidents over the past year. This year, the data of nearly 425,000 Texans was taken from the Texas Department of Transportation’s crash records database. In March, Mission, Texas, declared a state of emergency in response to a cyberattack. And in April, Abilene suspended its requirements of the state’s public records law after a disruptive cyberattack.

The state has taken measures to improve its cybersecurity posture. In June, Gov. Greg Abbott signed a bill creating the Texas Cyber Command, a new organization to help bolster IT security across the state.

Keely Quinlan

Written by Keely Quinlan

Keely Quinlan reports on privacy and digital government for StateScoop. She was an investigative news reporter with Clarksville Now in Tennessee, where she resides, and her coverage included local crimes, courts, public education and public health. Her work has appeared in Teen Vogue, Stereogum and other outlets. She earned her bachelor’s in journalism and master’s in social and cultural analysis from New York University.

In This Story

Advertisement
Advertisement

More Like This

Advertisement
Advertisement

More Scoops

Latest Podcasts

The cost of delaying Colorado’s AI Act

Crafting a good state benefits portal

Why some people don’t evacuate before hurricanes

How vague BEAD guidance could lead to broadband disparities

State

City

Cybersecurity

Modernization