March 16, 2021: Data Leak At New England Energy Supplier, Eversource
New England’s energy provider Eversource suffered a data leak in March that compromised the personal information of thousands of customers.
Eversource Energy, which provides service to 4.3 million electricity, natural gas and water users, sent across notifications to its customers to notify them about the breach.
December 22, 2019: Airline Hit By Cyber Attack, Cancels Flights
After a cyber attack on its computer network, RavnAir was forced to cancel at least a half-dozen flights in Alaska Dec. 22, 2019.
While the airline itself is not a huge carrier, the cancellations affected around 260 passengers, said company spokeswoman Debbie Reinwand.
The regional carrier canceled all flights involving its Dash 8 aircraft until noon “because the cyber attack forced us to disconnect our Dash 8 maintenance system and its back-up,” the company said. The airline serves more than 100 communities in Alaska, many of which are not accessible by road.
December 16, 2019: Ransomware Takes Down Maritime Facility
There was a ransomware intrusion at a Maritime Transportation Security Act (MTSA) regulated facility, said officials at the U.S. Coast Guard (USCG).
The virus, identified as Ryuk ransomware, may have entered the network of the MTSA facility via an email phishing campaign, officials said.
December 20, 2019: Ransomware Hits Trucking Firm
Teams restored most major desktop services and continue working to bring critical systems back online, including mobile services, said officials at Truckstop.com after a ransomware attack caused at least a weeklong outage that affected its sites, including its load board, online carrier safety vetting, and payment services.
March 27, 2019: Ellsworth County Rural Water District Attacked
Wyatt A. Travnichek, 22, of Ellsworth County, Kansas ended up charged with one count of tampering with a public water system and one count of reckless damage to a protected computer during unauthorized access.
March 31, 2021: University of California Hit By Accellion-Based Ransomware
The University of California (UC) was the victim of a ransomware attack via the Accellion Secure File Transfer Appliance (FTA).
The state university system its institution, along with several other government agencies, private companies and other schools have been involved in an Accellion-centric attack.
February 15, 2021: Turbomachinery manufacturer attacked with ransomware
On February 15, 2021, a defect was detected in internal system of the Elliott head office and confirmed an attack by ransomware on the mail system and certain servers. As the damage from the ransomware attack, some problems were confirmed in production or ordering systems at Elliott plants. Upon detection, Ebara Corporation, the Group’s Headquarters in Japan, and the Elliott Group in the United States immediately undertook a robust forensic investigation to determine the extent of the defect, its impact and potential consequences.
As of this writing, Nefilim Ransomware group has posted teaser files, one 6GB and 1 549KB in size as proof of data breach.
April 1, 2017: AW North Carolina Hit in Ransomware Attack
August 2016 at the Durham, NC-based 2,200-worker transmission factory, AW North Carolina, a computer virus flowed through the plant’s network like a raging river, flooding machines with data and stopping production for about four hours, said John Peterson, the plant’s information technology manager. Add the cost of downtime at $270,000 an hour that adds up to $1.08 million for a four-hour shut down.
Data on some laptops was lost, but the malicious ransomware ended up blocked by a firewall when it tried to exit the plant’s network and put the hackers’ lock on the plant’s computer network.
The plant was hit again in April 2017, this time different bad guys used an alternative type of ransomware, Peterson said. Learning from the previous attack, the attack ended up contained before affecting production. No ransom was paid to either group, he said.
February 4, 2021: WestRock Provides Update on Ransomware Incident
Atlanta, GA-based WestRock is undertaking extensive efforts to identify, contain and recover from this incident quickly and securely. Upon discovering the incident, WestRock immediately began an investigation, implemented business continuity processes and initiated response containment protocols with the support of cybersecurity experts. These actions included proactively shutting down certain systems in an abundance of caution, as well as taking steps to supplement existing security monitoring, scanning and protective measures. The Company also implemented measures, including manual processes, to respond to customers’ needs. The Company is now systematically bringing its information systems back online in a controlled, phased approach.
March 21, 2021: ‘Sophisticated’ Attack Hits Cyber Insurance Provider
Insurance provider Chicago, IL-based CNA Financial ended up hit by what it called a “sophisticated” cybersecurity attack on Sunday, company officials said.
“On March 21, 2021, CNA determined that it sustained a sophisticated cybersecurity attack. The attack caused a network disruption and impacted certain CNA systems, including corporate email,” the company said in an advisory.