Cyber Incident Victim: Oklahoma Tourism and Recreation Department

On February 2, 2021, the Oklahoma Tourism and Recreation Department initiated an investigation following claims by an unidentified individual alleging unauthorized access to data from TravelOK.com and associated websites. The department became aware of these assertions through external notification, prompting immediate engagement with Oklahoma Cyber Command to assess the validity of the breach claims. As a precautionary measure, officials disabled the system suspected of containing the potential vulnerability, effectively isolating it from further access. The incident involved allegations of data theft, though no corroborated evidence of actual data exfiltration or compromise was confirmed at the initial stage. Department representatives did not disclose the nature or volume of data purportedly accessed, nor did they specify whether customer information, internal records, or other datasets were implicated in the claims.

The response centered on containment and forensic analysis, with Oklahoma Cyber Command leading the technical investigation into the alleged intrusion. No timeline for system restoration or additional operational disruptions was provided publicly. Officials emphasized the proactive takedown of the potentially vulnerable system as a preventive action rather than a confirmation of compromise. The department did not release details regarding attack vectors, threat actor identity, or potential motives underlying the claims. No statements confirmed whether the incident affected third-party systems beyond TravelOK.com or its affiliated platforms. The investigation remained ongoing at the time of reporting, with no further public updates on findings, data exposure confirmation, or remediation steps beyond the initial containment measures.