Hackers Threaten To Publish Police Informant Data

Washington DC's Metropolitan Police Department has said its computer network has been breached in a targeted cyber-attack, US media report. The cyber criminals posted screenshots on their dark website supporting their claim to have stolen more than 250 gigabytes of data. The District of Columbia's Metropolitan Police Department said in a statement that it had asked the FBI to investigate the "unauthorised access." 

A ransomware group called Babuk is reportedly threatening to release sensitive data on police informants if it is not contacted within three days. The group warns it will start leaking information about police informants to criminal gangs if the police department doesn’t contact it within three days.

Babuk is thought to be a Russian based hacking group previously associated with breaches outside the US that has recently turned its attention to criminal ransom. Ransomware is used to scramble computer networks and steal information. Attackers target organisations with the aim to lock-down their systems and demand large sums of money in return for ending the hack. It is not clear if attackers managed to lock police out of their systems during the breach. 

Screenshots said to have been posted by the group on the dark web and shared on social media appeared to suggest it had gained access to information on criminal gang activity and police intelligence reports. 

"While we determine the full impact and continue to review activity, we have engaged the FBI to fully investigate this matter," the statement added, without providing further details of the reported breach." the Washington Police Dept. said in a statement.  

US government agencies have been targeted multiple times so far this year as a the imact of the disastrous SolarWinds breach continues. 

A worsening global epidemic of ransomware attacks is considered a national security threat by many, doing tens of billions of dollars in damage. US law enforcement is relatively powerless to counteract it as most of the criminals enjoy safe harbour in Russia and other nations with weak rule of law.

The Biden administration is attempting to improve the USA’s cyber security defenses, with an executive order expected soon. The Justice Department also recently formed a task force to help defend against ransomware attacks. By identifying ransomware as a priority, the task force will increase training and dedicate more resources to the issue, seek to improve intelligence sharing across the department, and work to identify “links between criminal actors and nation-states,” according to the memorandum.

The Verge:         CTV News:       BBC:      Wall Street Journal:     Sky:      ITPro:

You Might Also Read: 

British Police Launch CyberAlarm:

 

« Facebook And Apple Clash
Risks Of Bias In ‘Emotional AI’ »

CyberSecurity Jobsite
Check Point

Directory of Suppliers

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

QTS

QTS

QTS Realty Trust, Inc. is a leading provider of secure, compliant data center, hybrid cloud and managed services.

7Safe

7Safe

7Safe has been delivering hands-on digital security training courses since 2001 and offer e a portfolio of university and industry-accredited courses.

Akheros

Akheros

Akheros develops cybersecurity learning algorithms which anticipate, detect and prevent offensive and incongruous behaviors of M2M interactions.

Kivu Consulting

Kivu Consulting

Kivu Consulting combines technical and legal expertise to deliver data breach response, investigative, discovery and forensic solutions worldwide.

Ogasec

Ogasec

Ogasec is a cybersecurity company formed by the merger between Aker and N-Stalker in 2017. Solutions include Security & Connectivity Networking, Application Security, and Managed Security Services.

MicroEJ

MicroEJ

MicroEJ is a software vendor of cost-driven solutions for embedded and IoT devices.

Phosphorus Cybersecurity

Phosphorus Cybersecurity

Phosphorus has fully automated remediation of the two biggest IoT vulnerabilities, out of date firmware and default credentials.

Partnership for Conflict, Crime and Security Research (PaCCS)

Partnership for Conflict, Crime and Security Research (PaCCS)

PaCCS delivers high quality and cutting edge research to improve our understanding of current and future global security challenges in areas including cybersecurity.

Cybriant

Cybriant

Cybriant Strategic Security Services provide a framework for architecting, constructing, and maintaining a secure business with policy and performance alignment.

SensCy

SensCy

SensCy is a Trusted Guide for Sensible Cybersecurity for small and medium-sized organizations.

Cyber Law Consulting

Cyber Law Consulting

Cyber Law Consulting is a Dynamic full service legal firm which offers complete services for Cyber Law, cyberlaw, Internet Law, Data Protection Act, Cyber Security, IPR, Drafting.

RightSec

RightSec

RightSec is an emerging market leader and solution provider for cybersecurity and digital resiliency. We provide end to end solutions to suit your specific business lifecycle.

Velaspan

Velaspan

Velaspan design, deploy, and manage enterprise wireless networks and cybersecurity solutions for leading businesses and brands.

403Tech Inc.

403Tech Inc.

403Tech is a Calgary based IT Solutions Provider, specializing in small & medium business.

Arms Cyber

Arms Cyber

Arms Cyber is redefining ransomware defense with advanced solutions that stop attacks before they start.

VirtualMetric

VirtualMetric

VirtualMetric delivers performance-driven IT monitoring and log management solutions that simplify complex environments.