Ransomware threat actors have hit yet another public library. This time it is Northampton Public Library in Pennsylvania, who have posted this notice on their web site:
Temporarily closed until further notice
We will be temporarily closed until further notice due to technical issues. You will not be able to search our catalog, renew items online, or access your account. No fines will accrue during this time. The book drops are open.
On November 16, the library first disclosed the attack in a notice:
The Northampton Area Public Library experienced a network outage due to a ransomware attack. The affected servers were taken offline and some library services have already been restored. It may be several days before all library services are fully operational. All book drops are open at this time to accept returns and we hope to open to the public soon.
We apologize for the inconvenience this outage is causing our patrons and ask for patience as we work to get all services back online. We are working closely with our IT company to help prevent future attacks.
The Library only collects name, address, phone number, email address, driver’s license number, and birth date. The Library does not collect social security numbers and does not store credit card payment information.
We do recommend that if you have utilized the library’s computers or WIFI in the past that you change your passwords for any accounts you may have accessed for your own protection. It is always wise to monitor your passwords and personal information on a regular basis.
Thank you for bearing with us during this difficult time and we hope to see you soon
DataBreaches.net has not seen this library listed on any of the dedicated leak sites routinely checked, but will be keeping an eye out for it.
h/t, @Chum1ng0