Sergiu Gatlan reports: RailWorks Corporation, one of North America’s leading railroad track and transit system providers, disclosed a ransomware attack that led to the exposure of personally identifiable information of current and former employees, their beneficiaries and dependents, as well as that of independent contractors. Read more on BleepingComputer.
Category: Malware
IL: La Salle County: We’re still open for business
News Tribune reports: La Salle County officials Friday morning affirmed workers continue to restore the county’s computer network “with its first priority being public safety” after a ransomware attack this week. “All county offices remain open and are operating in lieu of their limited ability to access certain documents and records,” the statement read. “The…
Sodinokibi Ransomware Posts Alleged Data of Kenneth Cole Fashion Giant
Sergiu Gatlan reports: The operators behind Sodinokibi Ransomware published download links to files containing what they claim is financial and work documents, as well as customers’ personal data stolen from giant U.S. fashion house Kenneth Cole Productions. Sodinokibi (aka REvil) is a Ransomware-as-a-Service operation where the operators manage development of the ransomware and the payment portal used…
UK: Ransomware attack leaves council facing huge bill to restore services
Helen Pidd and Gregory Robinson report: A council in the north-east of England has admitted that it has suffered a cyber-attack that has disabled its IT servers for the past three weeks, leaving it with a steep bill and concerns among residents that their local government infrastructure is “in danger of collapse”. One Redcar and…
Ryuk Ransomware Attack in Florida Forces Prosecutor to Drop Charges in Drug Cases
Silviu Stahie reports: A ransomware attack against the police department in Stuart, Florida last year had an unexpected consequence; the police officers had to drop several cases after losing important evidence. Read about it on Hot for Security. The story was first reported by WPTV.
Nemty Ransomware Actively Distributed via ‘Love Letter’ Spam
Sergiu Gatlan reports: Security researchers have spotted an ongoing malspam campaign using emails disguised as messages from secret lovers to deliver Nemty Ransomware payloads on the computers of potential victims. The spam campaign was identified by both Malwarebytes and X-Force IRIS researchers and has started distributing malicious messages yesterday via a persistent stream of emails. Read…