Wisconsin Department of Transportation Widens Investigation into Multi-County Toll Road Cyber Breach
**Who:** The Wisconsin Department of Transportation (WisDOT) and the Federal Bureau of Investigation.
**What:** Launched an expanded probe into a suspected ransomware attack targeting the state's electronic toll collection system, potentially compromising personal and financial data of thousands of drivers.
**When:** The breach is believed to have occurred over a 48-hour period last week; the expanded investigation was announced during a formal press conference at 10 a.m. Central Standard Time on Tuesday.
**Where:** The breach targeted centralized billing servers located in the Dane County data center; however, affected accounts span routes including Interstate 94, the Hoan Bridge, and the Zoo Interchange.
**Why:** Preliminary forensic analysis suggests a foreign state-sponsored actor exploited an outdated encryption protocol; the motive appears to be data theft and potential service disruption.
**How:** Attackers infiltrated the system via a phishing email to a department contractor, deploying malware that remained dormant for two weeks before activating a data exfiltration script. Officials confirm that 4.7 million license plate scans and 120,000 credit card records are at risk, though no toll road operations were halted.