Ransomware

A state attorney has declined an investigation into former administrators at Broward County Public Schools after they shared privileged information with their private company that they withheld from the public.

Bans intended to stop victims from paying cyber criminals and cut off lucrative profit streams bring plenty of practical difficulties and risks that attackers will redouble focus on the most vulnerable entities.

The U.S. Department of Health and Human Services says it’s investigating the Dallas ransomware attack from earlier this year. The city now says 30,253 people were impacted by the cyber attack.

Cleveland City Schools says is has found "no indication" of compromised data, but the district is working with police and Homeland Security, and a relatively small number of devices on its network have been affected.

State and federal law enforcement is investigating a phishing scheme that targeted Johnstown Regional Sewage. The agency has not confirmed if money or information was lost in the attack.

In an attempt to wipe identifying information that could aid and abet phishing operations, a proposal to remove employee names and contracts from the Bernalillo County, N.M., transparency portal is headed for public discussion.

A week after Dallas revealed 26,212 people have been impacted by the city’s ransomware attack, officials say it’s likely an ongoing review will find that more people had their personal information exposed.

The state’s plan addresses how current and anticipated initiatives support its larger goals of building resilience, preparedness and unification across cybersecurity efforts. The strategy takes a holistic approach across sectors.

The Dallas City Council approved nearly $8.6 million in payments for services related to the ransomware attack earlier this year, including credit monitoring for potential identity theft victims.

Officials are now saying that as many as 26,212 Texans were impacted by the ransomware attack that hit city systems between April 7 and May 4. The hackers accessed names and Social Security numbers among other information.

The cyber attack against Waterbury Health and ECHN health systems was reported on Thursday, but the extent of the incident and details about how it was detected remained unclear as of Friday.

The city issued a formal notice for the first time about potential data being exposed since detecting the ransomware attack by hacking group Royal. Officials say the data of “certain individuals” was accessed by the group.

For the second time in the state, a large number of people had their data exposed when hackers exploited vulnerabilities in the file transfer tool MOVEit. The breach targeted a contractor to the Oregon Health Plan.

Officials announced that the county had been targeted by CL0p, a hacking group tied to Russia, in a cybersecurity breach of the common file transfer tool MOVEit. A range of sensitive personal data was affected in the breach.

A public school district in southern Louisiana is working with state police to identify the origin of a security failure July 25. The district has yet to learn how much and what kind of data may have been obtained.

The special group tapped by Gov. John Bel Edwards' administration in 2019 to respond to cyber attacks has been in a state of near constant activation. The costs to the state and local government agencies have spiraled in that time, state data shows.

When a school or district suffers a cyber attack, informing the public avoids fueling speculation, engenders trust and helps the public understand why it makes sense for government agencies to invest in cybersecurity.

In an email sent Tuesday to city employees, City Manager T.C. Broadnax said information stored by the city’s human resources department was exposed in the May cyber attack against city systems.