Hackers Threaten To Publish Police Informant Data

Washington DC's Metropolitan Police Department has said its computer network has been breached in a targeted cyber-attack, US media report. The cyber criminals posted screenshots on their dark website supporting their claim to have stolen more than 250 gigabytes of data. The District of Columbia's Metropolitan Police Department said in a statement that it had asked the FBI to investigate the "unauthorised access." 

A ransomware group called Babuk is reportedly threatening to release sensitive data on police informants if it is not contacted within three days. The group warns it will start leaking information about police informants to criminal gangs if the police department doesn’t contact it within three days.

Babuk is thought to be a Russian based hacking group previously associated with breaches outside the US that has recently turned its attention to criminal ransom. Ransomware is used to scramble computer networks and steal information. Attackers target organisations with the aim to lock-down their systems and demand large sums of money in return for ending the hack. It is not clear if attackers managed to lock police out of their systems during the breach. 

Screenshots said to have been posted by the group on the dark web and shared on social media appeared to suggest it had gained access to information on criminal gang activity and police intelligence reports. 

"While we determine the full impact and continue to review activity, we have engaged the FBI to fully investigate this matter," the statement added, without providing further details of the reported breach." the Washington Police Dept. said in a statement.  

US government agencies have been targeted multiple times so far this year as a the imact of the disastrous SolarWinds breach continues. 

A worsening global epidemic of ransomware attacks is considered a national security threat by many, doing tens of billions of dollars in damage. US law enforcement is relatively powerless to counteract it as most of the criminals enjoy safe harbour in Russia and other nations with weak rule of law.

The Biden administration is attempting to improve the USA’s cyber security defenses, with an executive order expected soon. The Justice Department also recently formed a task force to help defend against ransomware attacks. By identifying ransomware as a priority, the task force will increase training and dedicate more resources to the issue, seek to improve intelligence sharing across the department, and work to identify “links between criminal actors and nation-states,” according to the memorandum.

The Verge:         CTV News:       BBC:      Wall Street Journal:     Sky:      ITPro:

You Might Also Read: 

British Police Launch CyberAlarm:

 

« Facebook And Apple Clash
Risks Of Bias In ‘Emotional AI’ »

ManageEngine
CyberSecurity Jobsite
Check Point

Directory of Suppliers

Resecurity

Resecurity

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

Cyberis

Cyberis

Cyberis are pioneers in customer-focussed information security. Since 2011, we’ve been helping businesses protect their brands, customers and reputation.

Security Mentor

Security Mentor

Security Mentor provides innovative, online security awareness training designed for how people learn and work.

Sonatype

Sonatype

Sonatype protects the world's enterprise software from security, compliance, licensing risks, while reducing application development and deployment time.

NRI Secure Technologies

NRI Secure Technologies

NRI SecureTechnologies is a Cybersecurity group company of the Nomura Research Institute (NRI) and a global provider of next-generation Managed Security Services and Security Consulting.

RiskIQ

RiskIQ

RiskIQ is the leader in digital threat management, providing the most comprehensive discovery, intelligence, and mitigation of threats associated with an organization’s digital presence.

RCDevs

RCDevs

RCDevs is an award-winning Software company providing security solutions designed for modern enterprise technologies and suited for SMEs to large corporations.

Critical Insight

Critical Insight

Critical Insight provide Managed Detection and Response, Vulnerability Detection, and Consulting Services to help you secure your mission-critical systems.

Cyber Resilience

Cyber Resilience

Cyber Resilience offer an intensive program designed to help you create strategies to quickly become cyber resilient and to manage cyber risks in a measurable and predictable way.

C2SEC

C2SEC

C2Sec provides an innovative analytics platform that assesses and quantifies cyber risks in financial terms based on combining patented big data, AI, and cybersecurity technologies.

Lockheed Martin

Lockheed Martin

Lockheed Martin deliver full-spectrum cyber capabilities and cyber resilient systems to defense, intelligence community and global security customers.

META-Cyber

META-Cyber

META-cyber was founded by engineers with experience in process and control-protection to provide cyber security for industrial infrastructure.

BCyber

BCyber

BCyber is a Swiss Cyber Security company that provides security products, training, and managed services to protect diverse IT and OT environments against cyber, physical, and cyber-physical threats.

Eventus Security

Eventus Security

Eventus, are a team of highly skilled professionals who are committed to deliver excellence in next generation cyber security services and customized solutions for your enterprise.

Marlink

Marlink

Marlink smartly integrates hybrid, future-ready network solutions so you can benefit from the best available connectivity and IT to accelerate your digitalisation and empower your remote operations.

Morrow Global Network

Morrow Global Network

Morrow is the global venture network for venture accelerators, studios, hubs, and their visionary leaders.

Consortium

Consortium

Consortium goes beyond products and promises by working with enterprises to identify, acquire, and deploy cybersecurity solutions that matter.