Cyber Incident Victim: City of San Angelo
Date:
Nov 2019
Location:
United States of America
Summary
The City of San Angelo experienced a security breach affecting its online water billing system, potentially compromising customers' credit and debit card information. This incident, involving the Click2Gov payment platform, led to reported irregularities in customer accounts following online payments. It marked a recurrence of similar payment system compromises impacting residents. The municipality initiated an investigation and announced plans to transition to a new payment processing system in response to the breach.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
The City of San Angelo, Texas, initiated an investigation into a security breach affecting its online water billing system in November 2019 after customers reported suspicious activity on their credit and debit card accounts. The incident involved the Click2Gov payment platform, which processed municipal utility payments, and marked the second compromise of the city’s billing system within 16 months. Customers who had recently paid their water bills through the online portal observed unauthorized transactions or irregularities on their financial statements, prompting the city to issue a public notification on November 13, 2019. This breach followed an almost identical incident in August 2018, when attackers similarly compromised customer payment card data through the same online payment infrastructure. The recurrence highlighted persistent vulnerabilities in the city’s digital payment systems, though neither breach’s exact intrusion methods or data exfiltration scope were publicly disclosed. No specific number of affected accounts was provided in either incident.
City officials confirmed their investigation focused on determining how attackers accessed the Click2Gov system and what customer data might have been exposed. While forensic details remained undisclosed, the municipality acknowledged the breach’s financial consequences for residents, requiring them to monitor accounts for fraudulent charges. In response to the 2019 incident, the city announced plans to transition away from Click2Gov to an unspecified replacement payment platform, though no implementation timeline was shared. The repeated breaches eroded public trust in the city’s ability to secure sensitive payment information, particularly given the system’s prior compromise history. The city’s public communications emphasized awareness of the issue but did not outline specific remediation steps for impacted customers beyond standard fraud monitoring advice. This incident contributed to broader concerns about systemic security weaknesses in Click2Gov software, which had been implicated in breaches affecting multiple municipalities nationwide.