Technology
Ransomware attack exposes Social Security numbers at major gas station chain
NEWYou can now listen to Fox News articles!
Cybercriminals are happy to target almost any industry where data can be stolen. In many cases, less prepared and less security-focused companies are simply easier targets.
A recent ransomware attack on a company tied to dozens of gas stations across Texas shows exactly how this plays out. The incident exposed highly sensitive personal data, including Social Security numbers and driver’s license details, belonging to hundreds of thousands of people.
The breach went undetected for days, giving attackers ample time to move through internal systems and steal sensitive data. If you’ve ever paid at the pump or shopped inside one of these convenience stores, this is the kind of incident that should make you stop and pay attention.
Sign up for my FREE CyberGuy Report
Get my best tech tips, urgent security alerts and exclusive deals delivered straight to your inbox. Plus, you’ll get instant access to my Ultimate Scam Survival Guide – free when you join my CYBERGUY.COM newsletter.
What happened in the Gulshan ransomware attack
According to a disclosure filed with the Maine Attorney General’s Office, Gulshan Management Services, Inc. reported a cybersecurity incident that impacted more than 377,000 individuals. Gulshan is linked to Gulshan Enterprises, which operates around 150 Handi Plus and Handi Stop gas stations and convenience stores across Texas.
WINDOWS 10 USERS FACE RANSOMWARE NIGHTMARE AS MICROSOFT SUPPORT ENDS IN 2025 WORLDWIDE
The company says it detected unauthorized access to its IT systems in late September. Investigators later determined that attackers had been inside the network for roughly ten days before anyone noticed. The intrusion began with a phishing attack, a reminder of how a single deceptive email can still open the door to massive breaches.
Ransomware attacks don’t just hit tech companies. Retailers like gas stations store sensitive customer and employee data that criminals actively target. (Kurt “CyberGuy” Knutsson)
During that window, the attackers accessed and stole personal data, then deployed ransomware that encrypted files across Gulshan’s systems. The compromised information includes names, contact details, Social Security numbers and driver’s license numbers. That combination is especially dangerous, since it can be used for identity theft, account takeovers and fraud that may surface months or even years later.
Why the lack of a ransomware claim still matters
So far, no known ransomware group has publicly taken credit for the attack. That might sound like good news, but it does not necessarily change the risk for affected individuals. In many ransomware cases, silence can mean one of two things. Either the attackers have not yet posted stolen data publicly, or the victim company may have resolved the incident privately.
Gulshan’s filing states that it restored its systems using known-safe backups. That detail often suggests a company chose to rebuild rather than negotiate with attackers. Even so, once data has been copied out of a network, there is no way to pull it back. Whether or not the stolen information ever appears online, the exposure alone puts affected people at long-term risk.
This incident also highlights a recurring pattern. Retail and service businesses handle huge volumes of personal data but often rely on legacy systems and frontline employees who are prime phishing targets. Gas stations may not feel like obvious hacking targets, but their payment systems, loyalty programs and HR databases make them valuable all the same.
We reached out to Gulshan Management Services for comment regarding the breach, but did not receive a response before our deadline.
A customer pumps gas at a gas station on Feb. 13, 2025, in Austin, Texas. (Brandon Bell/Getty Images)
10 steps you can take to protect yourself after a breach like this
If your information was exposed in this breach or any similar ransomware incident, there are concrete steps you can take to reduce the fallout.
1) Monitor your credit and identity closely
If the company offers free credit monitoring or identity protection, enroll in it. These services can alert you early if someone tries to open accounts or misuse your identity. If nothing is offered, consider signing up for a reputable identity theft protection service on your own.
Identity Theft companies can monitor personal information like your Social Security Number (SSN), phone number, and email address and alert you if it is being sold on the dark web or being used to open an account. They can also assist you in freezing your bank and credit card accounts to prevent further unauthorized use by criminals.
See my tips and best picks on how to protect yourself from identity theft at Cyberguy.com.
2) Consider a personal data removal service
The less of your information that’s floating around data broker sites, the harder it is for criminals to target you. Data removal services can help reduce your digital footprint over time.
While no service can guarantee the complete removal of your data from the internet, a data removal service is really a smart choice. They aren’t cheap, and neither is your privacy. These services do all the work for you by actively monitoring and systematically erasing your personal information from hundreds of websites. It’s what gives me peace of mind and has proven to be the most effective way to erase your personal data from the internet. By limiting the information available, you reduce the risk of scammers cross-referencing data from breaches with information they might find on the dark web, making it harder for them to target you.
Even when no ransomware group claims responsibility, stolen data can still fuel identity theft, fraud, and account takeovers long after a breach occurs. (Kurt “CyberGuy” Knutsson)
Check out my top picks for data removal services and get a free scan to find out if your personal information is already out on the web by visiting Cyberguy.com.
Get a free scan to find out if your personal information is already out on the web: Cyberguy.com.
3) Use a password manager
A password manager helps you create and store unique passwords for every account. If attackers try to reuse stolen data to break into your online accounts, strong, unique passwords can stop that attempt cold.
Next, see if your email has been exposed in past breaches. Our No. 1 password manager pick includes a built-in breach scanner that checks whether your email address or passwords have appeared in known leaks. If you discover a match, immediately change any reused passwords and secure those accounts with new, unique credentials.
FIBER BROADBAND GIANT INVESTIGATES BREACH AFFECTING 1M USERS
Check out the best expert-reviewed password managers of 2026 at Cyberguy.com.
4) Turn on two-factor authentication (2FA) everywhere possible
2FA adds an extra barrier, even if someone has your personal details. Prioritize email, banking, cloud storage, and shopping accounts, since those are often targeted first.
5) Install and keep a strong antivirus software running
Strong antivirus software can help detect phishing attempts, malicious downloads, and suspicious activity before it turns into a full compromise. Keep real-time protection enabled and don’t ignore warnings.
The best way to safeguard yourself from malicious links that install malware, potentially accessing your private information, is to have strong antivirus software installed on all your devices. This protection can also alert you to phishing emails and ransomware scams, keeping your personal information and digital assets safe.
Get my picks for the best 2026 antivirus protection winners for your Windows, Mac, Android and iOS devices at Cyberguy.com.
6) Watch for phishing and follow-up scams
After breaches like this, scammers often send fake emails or texts pretending to be the affected company or a credit monitoring service. Slow down, verify messages independently, and never click links you weren’t expecting.
7) Review your credit reports regularly
Check your reports from all major credit bureaus for unfamiliar accounts or inquiries. You’re entitled to free reports, and catching issues early makes them much easier to fix.
8) Freeze your credit to stop new accounts from being opened
If criminals expose your Social Security number, place a credit freeze as soon as possible. A credit freeze blocks lenders from opening new accounts in your name, even when thieves have your personal details. The credit bureaus offer freezes for free, and you can temporarily lift one when you apply for credit yourself. This step stops identity theft before it starts, instead of alerting you after the damage is done. If you prefer not to freeze your credit, place a fraud alert instead. A fraud alert tells lenders to verify your identity before approving credit, which adds another layer of protection.
To learn more about how to do this, go to Cyberguy.com and search “How to freeze your credit.”
In the Gulshan attack, hackers spent days inside internal systems, stealing personal data before deploying ransomware that locked down files. (Silas Stein/picture alliance via Getty Images)
9) Protect yourself from tax refund fraud with an IRS Identity Protection PIN
When Social Security numbers are stolen, tax fraud often follows. Criminals can file fake tax returns in your name to steal refunds before you ever submit your paperwork. An IRS Identity Protection PIN (IP PIN) helps prevent this by ensuring only you can file a tax return using your SSN. It’s a simple but powerful safeguard that can block a common form of identity theft tied to data breaches.
10) Lock down existing bank and financial accounts
Don’t just watch for new fraud, proactively secure the accounts you already have. Enable alerts on bank and credit card accounts for large transactions, new payees, or changes to contact information. If your SSN or driver’s license number was exposed, consider calling your bank to ask about additional protections or account notes. Acting early can prevent small issues from becoming major financial problems.
Kurt’s key takeaway
Your personal data doesn’t just live with banks and hospitals. Retailers, gas stations, and convenience store operators also hold information that can cause real harm if it falls into the wrong hands. When attackers get in through something as simple as a phishing email and stay undetected for days, the damage can spread fast. You can’t prevent these breaches yourself, but you can limit how much power stolen data gives criminals by locking down your accounts and staying alert.
Do you think everyday businesses like gas stations take cybersecurity seriously enough? Let us know by writing to us at Cyberguy.com.
CLICK HERE TO DOWNLOAD THE FOX NEWS APP
Sign up for my FREE CyberGuy Report
Get my best tech tips, urgent security alerts and exclusive deals delivered straight to your inbox. Plus, you’ll get instant access to my Ultimate Scam Survival Guide – free when you join my CYBERGUY.COM newsletter.
Copyright 2026 CyberGuy.com. All rights reserved.
Meta is “temporarily pausing” the ability for teens to chat with its AI characters as it develops a “new version” of the characters that will offer a “better experience.” The company made the announcement in an update to a blog post from October where the company had detailed more parental controls for teen AI use. The change blocking teens from accessing the characters will go into effect “starting in the coming weeks.”
”Since we announced our plans to build parental controls for AI characters in October, we started developing a new iteration of AI characters generally (i.e. for both adults and teens),” spokesperson Sophie Vogel tells The Verge. “Rather than building the parental controls twice (for the current AI characters and the new iteration of AI characters) we’re pausing teen access to the current version while we focus on the new iteration. When that new iteration is available for teens, it will come with parental controls.”
According to TechCrunch, “Meta said that it heard from parents that they wanted more insights and control over their teens’ interactions with AI characters, which is why it decided to make these changes.”
In October, Meta announced that parents would be able to block their teens’ access to one-on-one conversations with its AI characters, block their teens from talking with specific AI characters, and share insights with parents on the topics their teens discuss with Meta’s AI characters and its AI assistant. The original plan was to roll out those controls early this year.
Last year, also in October, Meta changed Instagram teen accounts to allow teens to be able to see content that’s reflective of what might be shown in a movie rated for people that are 13 or older.
Update, January 23rd: Added information from a Meta spokesperson.
TikTok USDS Joint Venture’s mandate is to secure U.S. user data, apps and the algorithm through comprehensive data privacy and cybersecurity measures. It will safeguard the U.S. content ecosystem through robust trust and safety policies and content moderation while ensuring continuous accountability through transparency reporting and third-party certifications.
Data Protection: U.S. user data will be protected by USDS Joint Venture in Oracle’s secure U.S. cloud environment. The Joint Venture will operate a comprehensive data privacy and cybersecurity program that is audited and certified by third party cybersecurity experts. The program will adhere to major industry standards, including the National Institute of Standards and Technology (NIST) CSF and 800-53 and ISO 27001 as well as the Cybersecurity & Infrastructure Security Agency (CISA) Security Requirements for Restricted Transactions.
Algorithm Security: The Joint Venture will retrain, test, and update the content recommendation algorithm on U.S. user data. The content recommendation algorithm will be secured in Oracle’s U.S. cloud environment.
Software Assurance: The Joint Venture will secure U.S. apps through software assurance protocols, and review and validate source code on an ongoing basis, assisted by its Trusted Security Partner, Oracle.
Trust & Safety: The Joint Venture will safeguard the U.S. content ecosystem and have decision-making authority for trust and safety policies and content moderation.
TikTok USDS Joint Venture has three managing investors, Silver Lake, Oracle and MGX, each holding 15%. Completing the full consortium of investors are: Dell Family Office, the investment firm of Michael Dell, Founder, Chairman and CEO of Dell Technologies; Vastmere Strategic Investments, LLC, an affiliate of Susquehanna International Group, LLP; Alpha Wave Partners; Revolution; Merritt Way, LLC controlled and managed by partners of Dragoneer; Via Nova, an affiliate of General Atlantic; Virgo LI, Inc., investment arm of a foundation established by Yuri and Julia Milner in support of science; and NJJ Capital, the family office of Xavier Niel, a French entrepreneur and pioneer in telecommunications. ByteDance retains 19.9% of the Joint Venture.
NEWYou can now listen to Fox News articles!
Apple and Google just made one of the most important artificial intelligence (AI) announcements of the year. Under a new multi-year collaboration, Apple will base the next generation of its Apple Foundation Models on Google’s Gemini models and cloud technology.
The companies confirmed the partnership in a joint statement, signaling a major shift in how Apple plans to deliver AI features across the iPhone, iPad and Mac.
The deal comes as Apple faces growing pressure to catch up in AI, especially after delaying a long-promised overhaul of Siri.
Sign up for my FREE CyberGuy Report
Get my best tech tips, urgent security alerts and exclusive deals delivered straight to your inbox. Plus, you’ll get instant access to my Ultimate Scam Survival Guide – free when you join my CYBERGUY.COM newsletter.
5 BEST APPS TO USE ON CHATGPT RIGHT NOW
Apple and Google have entered a multiyear AI partnership that will shape the future of Apple Intelligence and Siri. (Andrey Rudakov/Bloomberg via Getty Images)
Why Apple chose Google’s Gemini
Apple evaluated multiple AI options before settling on Gemini. According to the joint statement, Apple believes Google’s AI provides the strongest foundation for its own models. Gemini has quickly become one of the most capable large language model families, backed by Google’s massive cloud infrastructure.
For Apple, this means faster development, more reliable performance and the ability to roll out advanced features without rebuilding everything from scratch. At the same time, Apple says Apple Intelligence will still run on the device and through its Private Cloud Compute system. In other words, Apple controls how user data flows, even if the underlying models come from Google.
The joint statement from Apple and Google
Here is the full joint statement from the two companies:
“Apple and Google have entered into a multi-year collaboration under which the next generation of Apple Foundation Models will be based on Google’s Gemini models and cloud technology. These models will help power future Apple Intelligence features, including a more personalized Siri coming this year.
“After careful evaluation, Apple determined that Google’s AI technology provides the most capable foundation for Apple Foundation Models and is excited about the innovative new experiences it will unlock for Apple users. Apple Intelligence will continue to run on Apple devices and Private Cloud Compute, while maintaining Apple’s industry-leading privacy standards.”
That last line is critical. Apple is clearly trying to reassure users that privacy remains central, even with Google’s technology involved.
CHATGPT’S GPT-5.2 IS HERE, AND IT FEELS RUSHED
Google’s Gemini models will help power Apple’s next-generation AI features while Apple keeps control of on-device processing and privacy. (REUTERS/Norbert von der Groeben)
A long-delayed Siri overhaul finally moves forward
A more personalized Siri is one of the biggest promises tied to this deal. Apple had already previewed major Siri improvements but ran into development problems. Reports described internal frustration, bugs and delays that pushed the revamped assistant further out than planned. This partnership helps explain why. By leaning on Gemini, Apple can accelerate Siri’s evolution instead of trying to solve every AI challenge internally. The result should be a smarter assistant that better understands context, handles complex requests and integrates more deeply across Apple apps.
Behind-the-scenes pressure at Apple
This deal did not happen in a vacuum. Apple has faced criticism for moving too slowly on AI while rivals pushed ahead. Apple had reportedly been in talks to license a custom version of Gemini for Siri and was expected to pay roughly $1 billion per year, though the official announcement did not confirm any financial terms.
Apple has also reshuffled its AI leadership. The company recently hired Amar Subramanya as vice president of artificial intelligence. He replaced John Giannandrea, who stepped down from the role after leading Apple’s AI strategy since 2018.
Antitrust questions loom
There is also a regulatory angle. Apple and Google already face scrutiny for their long-standing search agreement. That partnership came under renewed attention after U.S. District Judge Amit Mehta ruled that Google holds a monopoly in online search, while still allowing payments to Apple to keep Google as the default search engine on iPhones. This new AI collaboration could attract fresh attention from antitrust regulators who worry about powerful tech companies becoming even more intertwined.
CLICK HERE TO DOWNLOAD THE FOX NEWS APP
The deal signals a strategic shift as Apple accelerates its AI roadmap to deliver smarter, more personalized experiences across its devices. (Phil Barker/Future Publishing via Getty Images)
What this means for you
For those of you using Apple devices, the impact is straightforward. You should see smarter Apple Intelligence features arrive faster, starting with a more capable Siri. Tasks like summarizing messages, handling complex reminders and understanding context across apps should improve. At the same time, Apple insists your data stays protected. Apple Intelligence will still rely on device processing and Private Cloud Compute, rather than funneling personal data directly into Google’s systems. In short, users get better AI without giving up Apple’s privacy stance, at least in theory.
Take my quiz: How safe is your online security?
Think your devices and data are truly protected? Take this quick quiz to see where your digital habits stand. From passwords to Wi-Fi settings, you’ll get a personalized breakdown of what you’re doing right and what needs improvement. Take my Quiz here: Cyberguy.com.
Kurt’s key takeaways
Apple’s partnership with Google marks a turning point in its AI story. Instead of going it alone, Apple is betting that combining its privacy-focused platform with Google’s AI muscle is the fastest path forward. If Apple delivers on its promises, this deal could finally close the AI gap that has frustrated users and investors alike. The real test will come when those features land on your devices.
Do you trust Apple to balance powerful AI with privacy now that Google’s technology sits under the hood? Let us know by writing to us at Cyberguy.com.
Sign up for my FREE CyberGuy Report
Get my best tech tips, urgent security alerts and exclusive deals delivered straight to your inbox. Plus, you’ll get instant access to my Ultimate Scam Survival Guide – free when you join my CYBERGUY.COM newsletter.
Copyright 2026 CyberGuy.com. All rights reserved.
New Jersey’s Traffic Ranking Reveals Challenges And Safety Focus In 2026 Study
NM Legislature day 4 recap: Impending winter storm cancels committee hearing
No. 22 North Carolina is trying to fix mistakes as the ACC schedule gets tougher
Rural hospitals called ‘not optional’ as North Dakota acts to keep one open
Ohio State has answered all the questions — and more — to become real Big Ten threat
Florida High School Football Rankings: Top 25 teams – Oct. 21
Cleary's 21 help Le Moyne down Central Connecticut State 69-64 in OT
How old is Bo Nix? What to know about Oregon quarterback ahead of 2024 NFL Draft
99th annual Pony Swim held in Virginia
Indiana Members Credit Union announced as new anchor tenant at Bottleworks District
Video: President Trump Rescinds Canada’s Invitation to His ‘Board of Peace’
Post-Roe battle over abortion pills reaches Kentucky gas stations as AG opens investigation
‘Electrifying everything’ is key to Europe’s future, says IEA chief
Ryan Wedding arrested: FBI confirms former Olympian turned drug kingpin in custody
Video: Jack Smith Defends His Trump Indictments During House Hearing
-
Sports5 days agoMiami’s Carson Beck turns heads with stunning admission about attending classes as college athlete
-
Illinois1 day agoIllinois school closings tomorrow: How to check if your school is closed due to extreme cold
-
Detroit, MI1 week agoSchool Closings: List of closures across metro Detroit
-
Pittsburg, PA4 days agoSean McDermott Should Be Steelers Next Head Coach
-
Lifestyle1 week agoJulio Iglesias accused of sexual assault as Spanish prosecutors study the allegations
-
Lifestyle5 days agoNick Fuentes & Andrew Tate Party to Kanye’s Banned ‘Heil Hitler’
-
Sports4 days agoMiami star throws punch at Indiana player after national championship loss
-
Technology1 week agoInside the White House shitposting machine