Ransomware Hits Texas For Six

Uploaded on 2019-08-26 in NEWS-Cybersecurity News, GOVERNMENT-Local, FREE TO VIEW

The Hackers who have struck a large number of local  government agencies acrossTexas with file-encrypting malware recently may have done it by compromising a managed service provider.  The attacker has now demanded a collective ransom of $2.5 million, the mayor of one municipality has said. 

The Texas Department of Information Resources (DIR) first  said on the 16th August that it was leading the response to a coordinated ransomware attack that had struck local governments across Texas. The number of local government entities in Texas affected by a ransomware attack has ow riseen to 23.

By planting malicious code inside agencies' information systems, digital intruders are able to exploit relatively unsophisticated or out-of-date cyber defenses and inhibit computer access. Affected users are then asked to pay a ransom, almost always in mostly untraceable bitcoin, to regain control of their systems. Whether Texas officials had been asked to do so was unknown. 

In 2016, global ransomware attempts rocketed to 638 million from just 4 million the year before, according to SonicWall, a  Californian network security firm.

Now the Department of Information Resources advises jurisdictions that have been impacted to contact their local Texas Department of Emergency Management Disaster District Coordinator. DIR says it’s committed to providing the resources necessary to bring affected entities “back online.”

The DIR says it is continuing to investigate the origin of the attack, and currently believes that the attack came from a "single threat actor." The agency says the State of Texas systems and networks have not been affected.

Elliot Sprehe, press secretary for the department, said theDIR was working to confirm which government entities are affected and said other information was still coming in. 

"It looks like we found out earlier today, but we’re not currently releasing who’s impacted due to security concerns,” he said.

KUT Austin:     TexasGov:    DallasNews:     Bleeping Computer:

You Might Also Read:

Florida Municipality Suffers Cyber Extortion:

Only In Texas: Ransomware Steals Data From Police:

 

« The EU's New Cybersecurity Certification Framework
Cyber Strategy & Cyber Security »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

ON-DEMAND WEBINAR: Gen AI for Security: Adoption strategies with Amazon Bedrock

ON-DEMAND WEBINAR: Gen AI for Security: Adoption strategies with Amazon Bedrock

Watch this webinar and get a comprehensive roadmap for securely adopting generative AI using Amazon Bedrock, a fully managed service that offers a choice of high-performing foundation models (FMs).

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

Cyber Security Supplier Directory

Cyber Security Supplier Directory

Our Supplier Directory lists 6,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

Resecurity, Inc.

Resecurity, Inc.

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

HexaTrust

HexaTrust

The HEXATRUST club was founded by a group of French SMEs that are complementary players with expertise in information security systems, cybersecurity, cloud confidence and digital trust.

Meiya Pico Information Co

Meiya Pico Information Co

Meiya Pico is the leading digital forensics and information security products and service provider in China.

Living Security

Living Security

Living Security specializes in metric driven and engaging security awareness solutions that reduce risk by increasing security culture and changing employee behaviour.

Swascan

Swascan

Swascan is the first all-in-one, GDPR Compliant, Cloud Security Suite Platform. GDPR Assessment, Web Application Scan, Network Scan, Code Review.

Sky Republic

Sky Republic

Sky Republic offers a Smart Contract Platform to integrate and synchronize business networks beyond EDI and API.

EuraTechnologies

EuraTechnologies

EuraTechnologies, the French incubator and accelerator, is a centre of excellence and innovation for startups and entrepreneurs with a focus on Digital, Data, Cybersecurity and IoT.

QI ANXIN Technology Group

QI ANXIN Technology Group

QI ANXIN specializes in serving the cybersecurity market by offering next generation enterprise-class cybersecurity products and services to government and businesses.

DataDog

DataDog

DataDog provides Cloud-native Security Monitoring. Real-time threat detection across your applications, network, and infrastructure.

Centre for Cyber Security Research and Innovation (CSRI) - Deakin University

Centre for Cyber Security Research and Innovation (CSRI) - Deakin University

CSRI solves the cyber security threats of tomorrow, today. We work with industry and government leaders on innovative research that has real-world impact.

Xceptional

Xceptional

Xceptional is a multi-award-winning technology services firm that celebrates the unique strengths of people with autism.

DruvStar

DruvStar

DruvStar provides B2B cybersecurity around threat management to strengthen businesses across attack vectors.

Metallic.io

Metallic.io

Metallic (formerly TrapX) is a SaaS portfolio for enterprise-grade backup and recovery, designed to protect your data from corruption, deletion, ransomware, and other threats.

NPCERT

NPCERT

NPCERT is a team of Information Security experts formed to address the urgent need for the protection of national information and growing cybersecurity threat in Nepal.

Nokod Security

Nokod Security

Nokod Security delivers an application security platform for low-code / no-code custom applications and Robotic Process Automation (RPA).

Smarsh

Smarsh

Smarsh products are designed for user-friendly, efficient compliance. From archiving, supervision, and discovery to cybersecurity – Smarsh has you covered.

Lightpath

Lightpath

Lightpath is revolutionizing how organizations connect to their digital destinations by combining our next-generation network with our next-generation customer service.