Ransomware

A K-12 district in Northern Kentucky this week announced that a ransomware attack had removed some files from their servers without authorization, and they may be published online. Details are under investigation.

The effects of a November ransomware attack against Oceanside, Calif.’s Tri-City Medical Center were contained more than two weeks ago, but now those behind the cyber incident are publishing stolen data on the dark web.

Three weeks after a cyber attack took down multiple city of Huber Heights, Ohio, government systems and functions, officials have still not determined what, if any, resident personal data has been released by the hackers.

By "shifting left," or moving testing as early in the app development process as possible, state and local cybersecurity teams can identify vulnerabilities and fix them before they become problems.

As ransomware attacks have continued to hit state and local organizations — and tech advancements like generative AI have continued apace — cyber experts predict evolving malicious tactics for 2024.

Long Beach Utilities Department CIO Paula Crowell was set to take over as Santa Monica’s CIO Dec. 18, but the far-reaching impacts of a November cyber attack prompted her to reconsider the transition.

Credit union solutions provider Ongoing Operations experienced a cyber incident in late November. About 60 credit unions are believed to be suffering a level of disruption as a result.

Recent cyber attacks against water infrastructure in western parts of the state have officials assessing risk exposure. In Delaware County, water companies say they’ve taken proactive steps to defend their systems.

The North Texas Municipal Water District, which supplies water to sprawling Collin County suburbs, is the latest target of a ransomware attack. The breach has not disrupted service to the more than 2 million customers in the area.

Two weeks after a ransomware attack, Huber Heights officials say the Income Tax Division is back online and the city's payroll was processed successfully last week. It is unclear if the attack exposed resident data.

A sophisticated foreign cyber attack disrupted courts across the state last month, jeopardizing sensitive information, the Kansas Supreme Court said this week. Officials are still evaluating the data the criminals stole.

Long Beach, Calif., continues to grapple with a Nov. 14 network security incident. It declared a local emergency on Nov. 17 and on Nov. 22 announced the restoration of a few services.  

County officials say that there is no evidence that resident data was stolen in the October cyber attack. The nature and scope of the attack, and any possible impacts to county data, are still being investigated.

Schools faced off against ransomware, banking Trojans, cryptominers and other threats, while citing limited cyber funding. This year, more schools struggled with threat detection and incident response management.  

The City Council will meet at noon today to decide whether to ratify the city manager’s push for emergency powers to help the city respond to a cyber incident that struck its systems Tuesday.

A Nevada district that suffered a cyber attack in October is implementing stricter Google Workspace measures, a forced password change for students and two-factor authentication for staff accounts on Infinite Campus.

The FBI and CISA, along with the MS-ISAC, issued a joint advisory explaining Rhysida ransomware actors’ known tactics, techniques and procedures and indicators of compromise — and ways to better defend.

The breach that exposed the data of an estimated 1.3 million residents was discovered six months before notifications were sent out. Experts say the delay was necessary to investigate the incident.