A ransomware attack in September compromised the Social Security numbers and driver’s licence details of 377,082 people linked to Gulshan Management Services, Inc., which is connected to Gulshan Enterprises and operates around 150 Handi Plus and Handi Stop gas stations and convenience stores across Texas.
The incident was reported to the Maine Attorney General’s Office on 6 January, with a copy of the notification letter provided to those affected, and, according to Kurt Knutsson, the threat actor(s) gained access via a phishing attack. The breach went undetected for days, allowing attackers time to move through internal systems and steal highly sensitive personal data belonging to hundreds of thousands.
While the article notes that the data types involved do not necessarily indicate customer data was compromised, it is unclear who exactly was affected, and one class-action lawsuit has been filed in federal court for the Southern District of Texas: In Re Gulshan Management Services Data Breach Litigation (4:26-cv-00200).
The report also states that it is unclear whether SSNs were collected from customers, as it has long been illegal to require SSNs for credit card users and no credit card data is reportedly involved. According to DataBreaches[.]Net.