In a troubling cybersecurity breach, the Tarrant Appraisal District (TAD) of Texas reported that a ransomware attack on March 21 allowed hackers to access sensitive personal data of around 300 individuals. “It has been determined that there was unauthorized access to our network, which has resulted in the potential exposure of a small amount of personal information,” stated TAD in an official communication, emphasizing their commitment to transparency and notifying affected individuals promptly.
The incident is linked to a hacking group known as Medusa, which has established a pattern of leveraging extortion tactics and the threat of data sale on the dark web. Following an emergency meeting held on March 25, TAD’s legal counsel revealed that the hackers were demanding a ransom of $700,000. “Our district has not paid the ransom,” confirmed TAD officials, underscoring a stand against yielding to cybercriminal demands.
While the situation unfolds, TAD is focusing on the operational aftermath of the attack. Many functions of their website remain offline, significantly hindering the appraisal and tax exemption processes that the district manages. “We expect to send value notices this month that property owners can contest online,” said Joe Don Bobbitt, TAD’s chief appraiser, in an exclusive interview with the Star-Telegram.
Bobbitt highlighted that the majority of the data stored by TAD is public, primarily consisting of property sales details, tax deeds, and square footage information. He stressed the importance of understanding the nature of the compromised data: “Almost all of it is public information.” Despite the sensitivity of the accessed data, the district's outreach includes guidance on how constituents can protect themselves from potential fraud, as indicated in their recent communications.
As the situation develops, TAD has been proactive in supplying resources about freezing credit and reporting any suspicious activity. The district's measures aim to alleviate the concerns of those who may have been affected by the breach. “We are closely monitoring the situation to ensure that our community remains informed and protected,” added Bobbitt.
The incident comes amid growing concerns surrounding ransomware attacks, particularly as organizations grapple with the implications of compromised data. TAD’s experience echoes broader cybersecurity trends, with the U.S. Cybersecurity & Infrastructure Security Agency identifying Medusa as a recurring threat.
Looking Ahead
As the appraisal district works to regain full operational capability, stakeholders and affected individuals will be waiting to see how the agency navigates the ongoing challenges posed by cybercriminals. In the coming weeks, the focus will not only be on restoring services but also on implementing stronger cybersecurity measures to protect against future attacks. Ultimately, how TAD handles this breach could serve as a case study for other agencies facing similar threats in an increasingly digital world.
