Malware attacks SEPTA, employee info, bank accounts, possibly compromised

Personal information pertaining to SEPTA’s roughly 9,300 employees might have been compromised during a malware attack that has affected the Philadelphia transit authority for nearly three weeks.

The attack forced SEPTA to shut down its ability to share real-time information with riders in early August to prevent spreading the malware further, according to report in the Philadelphia Inquirer.

The features attacked included SEPTA’s “Next-to-Arrive” app and platform announcements, which returned online recently, but SEPTA employees are still facing a lack of access to servers and programs which continue to impede their ability to perform their jobs.

Given the fact that the systems have been shut down for weeks could mean the agency is not sure which parts of its computer systems hackers have compromised, or even if hackers are still within the system.

SEPTA General Manager Leslie Richards told employees in an email recently that “Unauthorized individuals may have accessed” files containing employee names, Social Security numbers, addresses, benefits enrollment information, salary or hourly rate, as well as bank account and routing numbers,

“SEPTA prioritize the protection of the personal information of our employees,” Richards said in the email. “While we are still in the process of confirming the full extent of the data that may have been impacted, SEPTA is providing you with resources as quickly as possible so that you may protect your personal information for actual or attempted use.”

The authority has brought in the FBI and outside information technology experts to assist in the investigation, and the transit authority is offering a year of free credit monitoring to workers through Kroll, a cybersecurity consultant. It’s also set up a call center dedicated to answering employee questions about the attack.