Ransomware attack targeted SA-based charter bus company last fall, attorney says

SAN ANTONIO — A “sophisticated ransomware attack” by a group known to the FBI impacted a San Antonio-based charter bus company in November, potentially exposing the private information of hundreds of personnel, an attorney for the company said. 

Star Shuttle reported the data breach to Texas Attorney General Ken Paxton’s office on Monday, saying that the Social Security numbers for 509 individuals was vulnerable. 

But “the information that may have been impacted belonged to Star Shuttle contractors, not customers,” said Alecsandra Dragus, an attorney with Kennedys Law, which is providing outside counsel to Star Shuttle. 

Star Shuttle hasn’t determined the root of the ransomware attack, Dragus said, but the group who claimed responsibility for it is known to have carried out similar hacks on other U.S. companies. 

The 34-year-old, family-owned company provides charter services for buses and limos throughout the state. 

“Star Shuttle regrets that this event has occurred,” she added. “Moving forward, Star Shuttle has reviewed and revised its data security, which includes the implementation of new security measures and deployment of additional end point detection software.”

Ransomware attacks are conducted by malicious outside groups that look to access a company’s digital databases, and demand they pay a ransom for their return. Oftentimes, attackers ask for a ransom in order for control or information to be returned to companies. 

It’s unknown if the group that targeted Star Shuttle asked for a ransom, nor the extent to which the breach impacted the company’s operations. 

The FBI says the best way to prevent falling victim to a ransomware attack is by being a cautious computer user; keeping software up to date; regularly running anti-virus scans; backing up data regularly; securing your information backups; and coming up with “a continuity plan in case your business or organization is the victim of a ransomware attack.”