Updated April 19, 2024
In late March, Tyler discovered unauthorized activity in an isolated segment of a private cloud hosting environment that stored limited STAR system client data. We immediately took the system offline and have been in close contact with affected clients. In coordination with third-party experts, we launched an incident response investigation. In parallel, our security and technical support teams began working to restore system access in a safe and secure manner.
Known, good (immutable) backups were available, and recovery of the application environment and associated data have been a focus for Tyler since we discovered this situation.
Our investigation found that a threat actor encrypted the system and acquired data.
The threat actor has claimed they will make information from this system public.
Update April 19, 2024: The threat actor released information they claim was acquired from the STAR system.
In addition to engaging a nationally recognized, third-party cybersecurity firm to investigate, we also contacted law enforcement.
Situations such as this highlight the importance of remaining vigilant, following security protocols, and reporting any unusual or suspicious activity to your information technology or cybersecurity team.
This page contains all currently available public information regarding this situation. If new information becomes available, we will provide the update here when it is safe and responsible to do so.