Colorado Water Utility Customer Data Compromised by Data Breach at Payment Vendor Click2Gov

September 30, 2022


Colorado water supplier are the latest victims of a series of attacks on the Click2Gov municipality payment software. In a statement issued to press on Monday (December 30), Aurora Water said that the personal information of customers who had used the platform between August 30 and October 14 had been impacted. An unauthorized actor, it explained, had “modified a piece of computer code” used by Click2Gov “to capture limited personal information such as first and last name, billing address, payment card type, payment card number, payment card verification value, and payment card expiration date.”

Aurora Water, which provides water to 360,000 residents in Aurora, Colorado, said that upon discovering the incident it took “Click2Gov offline for any new reoccurring or one-time payments” and launched an investigation.

Incident Date

September 15, 2019

Estimated Cost

No cost values disclosed.

Type of Malware

No Malware identified

Threat Source

No threat source identified