Feb 19, 2021 | STATESCOOP City and state agencies have this month begun disclosing a recent ransomware attack against a widely used payment processing service. Bleeping Computer reported Thursday that the company known as Automatic Funds Transfer Services was hit by a ransomware attack around Feb. 3 when a group called “Cuba Ransomware” began stealing the company’s credentials and unencrypted files. According to the group’s website, it’s stolen “financial documents, correspondence with bank employees, account movements, balance sheets, and tax documents” from the company that processes paper-based payments for many state and local government agencies. Government agencies that have reported the attack this month include the California Department of Motor Vehicles, which on Wednesday disclosed that its last 20 months of vehicle registration records may have been compromised. This includes names, addresses, license plate numbers and vehicle identification numbers, the state said, but not Social Security numbers, birthdates, voter registration information, immigration status or driver’s license information. The DMV said it stopped all “data transfers” after discovering the breach.