Matt Kapko reports:
A ransomware attack against San Francisco’s Bay Area Rapid Transit exposed highly sensitive and personal data after a threat group leaked the records Friday. The nation’s fifth-largest transit system by ridership, and largest in California, remains operational.
Vice Society, a prolific ransomware group, claimed responsibility for the attack on Friday when it listed BART on its leak site.
The allegedly stolen data, according to screenshots provided to Cybersecurity Dive, includes a long list of files titled “master employee list,” “background disposition” reports, crime lab reports, police reports, a “suspected child abuse report,” a controlled substances examination report for heroin and other highly sensitive and personal data.
Read more at Cybersecurity Dive.
DataBreaches had been holding off on reporting on this one as this site had sent an inquiry to Vice Society and was hoping for a response prior to publication, but none has been received.