Monica Benevides reports:
Worcester contractor Coghlin Electrical Corp. experienced a ransomware attack on Monday [July 26], although compromised files have been recovered, the Worcester Telegram & Gazette reported Friday.
When reached via email by WBJ, Coghlin CEO Sue Mailman declined to expand on the situation.
From the earlier report and this one, it sounds like Coghlin was able to recover from backup. But were copies of files exfiltrated? They don’t say, and if copies were exfiltrated, was there any personal information in there? They don’t say. And they don’t say what kind of ransomware.
Read more on WBJ.
Update: This incident has been added to Avos Locker’s leak site, with some proof of claims offered. The threat actors write: “Data exfiltration consisted of financial documents, invoices, bank statements, passports scans and IRS tax forms for employees and CEO Susan Marie.”