Tag Archive for: Cyberattack

Russian hacking group claims responsibility for cyberattack on Indiana wastewater plant

/in


A video by a Russian hacking group claiming responsibility for last week’s cyberattack on Tipton West Wastewater Treatment Plant in Indiana surfaced on social media Thursday. It’s evidence of the latest cyberattack by nation state cybercriminals targeting water facilities in small towns across the United States.

The “People’s Cyber Army of Russia” took credit last Saturday for the incident on the messaging app Telegram. A message accompanying the video read: “We continue to look partially cover our series of work on US infrastructure. Today, we’ll look at Indiana. Let’s consider the work on municipal water treatment plants. Enjoy watching, friends.”

The group has also claimed responsibility for a January cyberattack on a water facility in Texas, which caused a tank to overflow.

Other Russian hacking groups, such as Sandworm, the cyberwarfare unit of Russia’s military intelligence service, have also been conducting cyberattacks on water treatment facilities across the U.S. in recent months.

The cyberattack in Tipton, which provides wastewater treatment for roughly 5,000 people in a town 40 miles north of Indianapolis, began disrupting operations on Friday evening. Plant managers sent employees to correct the activity, which interrupted operations again on Sunday morning, according to Jim Ankrum, general manager of Tipton Municipal Utilities.

“At that time, we were notified that we had been hit with a cybersecurity attack,” Ankrum told StateScoop on Thursday.

He described the disruptions to the plant’s operations as minor and said the town’s drinking water was never in jeopardy.

“We maintained plant operational capability throughout [the incident] and were able to continue to accept wastewater flows and free even with the disruptions,” said Ankrum.

Last month, the Biden Administration issued a warning to state governments and industry leaders that local water systems and other critical infrastructure are especially vulnerable to cyberattacks.

Ankrum said the water utility uses third-party vendors to support its cybersecurity measures and does not have its own internal IT staff.

“We all do receive…

Source…

Florida Memorial University reportedly targeted in ransomware cyberattack | South Florida News

/in


Florida Memorial University (FMU), South Florida’s only historically Black college or university has reportedly fallen victim to a cybersecurity breach by the ransomware group known as INC Ransom. The specifics of the data compromised during this incident remain uncertain, and the university has yet to issue a formal statement regarding the breach.







INC Ransom Blog Post

INC Ransom posts on their blog confirming their recent attack on Florida Memorial University. 


In a disturbing display of their malicious capabilities, INC Ransom has uploaded a ‘proof pack’ on its website, showcasing scans of passports, Social Security numbers, and contractual documents, ostensibly sourced from FMU’s databases.







INC Ranson's FMU Proof Pack

INC Ransom has uploaded a so-called “proof pack” on its website, showcasing scans of passports, Social Security numbers, and contractual documents, ostensibly sourced from FMU’s databases.

Source…

Vans, North Face parent downplays cyberattack

/in


U.S. global apparel and footwear company VF Corporation, which owns Vans, The North Face, and Supreme, emphasized that the December cyberattack that impacted data from 35.5 million customers did not include any bank information or credit card details, The Register reports.

In an email sent to impacted individuals, VF Corp. insisted that it never collected or retained financial or payment information outside the payment method used for customer purchases while reassuring that the incident did not result in any password exposure. Attackers were able to compromise individuals’ full names, phone numbers, email addresses, and billing and shipping addresses, as well as order histories, payment methods, and total order values but there has been no evidence suggesting any misuse of such exfiltrated information, said VF Corp., which still urged affected customers to be wary of potential phishing, identity theft, and fraud incidents.

Immediate password changes for VF Corp. accounts and other accounts sharing similar credentials have also been advised.

Source…

City of St. Cloud Responds to Ransomware Cyberattack

/in


Early this morning, the City of St. Cloud reported a cybersecurity incident involving a ransomware attack targeting its systems. Officials have swiftly initiated a coordinated response, engaging with both state and local agencies to mitigate the impact of the attack and restore affected services promptly.

Despite the challenges presented by the cyberattack, the City of St. Cloud has maintained its commitment to public service, ensuring that city operations continue with minimal disruption. Government offices remain open, operating under adjusted conditions to address the current situation.

Key emergency services, including Police and Fire Rescue, are fully operational, with teams actively responding to all service calls. The City has also implemented temporary measures to ensure continuity in its public utilities and services. Notably, the Transfer Station is accepting payments in cash only for the time being, but trash and recycling collection schedules remain unchanged, emphasizing the City’s effort to maintain routine services for its residents.

In-person payments for Parks and Recreation are cash-only. Online facility reservation payments and online event registrations are still accepting credit card payments.

Residents requiring building inspections are encouraged to contact the designated hotline at 407-957-7224. Similarly, inquiries and requests for Public Works inspections can be directed to 407-957-7269, where city staff are available to provide assistance.

The City of St. Cloud appreciates the community’s patience and cooperation as it navigates through this cybersecurity challenge. Efforts to fully resolve the issue are underway, and updates will be provided as more information becomes available.

Source…