United States

July 6, 2022: Marriott Hacked Again in 2022

Marriott International Inc. confirmed on Wednesday July 6th that they had suffered a second data breach this year. Initial reports say that attackers stole a total of 20GB worth of data including some sensitive information such as credit card information, confidential business documents, and customer payment information

Marriott is preparing to notify between 300 and 400 individuals about the data breach.

July 12, 2018: Bay & Bay, a MN medium-sized Trucking Company, Pays “Five-Figure” Ransom

On July 12, 2018, Bay & Bay was hit with a variant of the SamSam ransomware “I Apologize”. The attack locked up the servers and desktop computers and demanded payment to decrypt those critical systems. Bay & Bay’s IT staff initially attempted to restore its systems, but the process suddenly stopped as an active hacker thwarted their efforts and backup points started disappearing right before their eyes. After consulting with numerous cybersecurity experts, contacting a legal firm and even speaking with the FBI, Bay & Bay decided the best course of action was to pay the ransom. Bay & Bay was able to recover 98% of its information, and forensic analysis showed that none of its data was stolen or transferred off-site.

January 9, 2022: MN Trucking and Logistics Company Hit by Ransomware Attack Again

On December 1, 2021, Bay & Bay Transportation's IT systems started acting up and soon became apparent that malware encrypted data on the company’s systems. The company had been down this road before. A ransomware attack in 2018 crippled its systems and led the company to pay the criminals.

“The good part of it is we have a lot better tools, systems and processes than we did three years ago, but we knew it was bad because the spread was more heinous than the other one,” Wade Anderson, Bay & Bay’s chief information officer, chief technology officer and head of marketing, told FreightWaves. The company was able to return to “90% functionality” within about a day in a half, Anderson said. He credited quick action, training and cloud-based backups with enabling a rapid recovery.

February 4, 2022: Ransomware Attack halts Operations at Mizuno Sports Brand.

Ransomware attack at Mizuno affected order processing and caused shipping delays of over a month. The IT outages also affected Mizuno's 'Direct Connect' B2B website used by resellers to place orders. The company is tight lipped on details. Information instead has come from anonymous sources and others investigating reports on the incident.

October 6, 2020: Acuity Brands Data Purloined

Lighting and building management company, Acuity Brands, said it ended up hit by two data breaches over the past two years, and it appears it is just now getting around to informing the public and workers.
Atlanta, Georgia-based Acuity Brands said it identified a data security incident one year ago and it immediately took steps to secure its systems, and hired a third-party cybersecurity firm to conduct a thorough investigation.
Acuity discovered evidence of an unauthorized access that occurred on October 6 and October 7, 2020, which included an attempt to copy certain files out of its network.

December 7, 2021: Acuity Brands Hit in Cyber Attack

Lighting and building management company, Acuity Brands, said it ended up hit by two data breaches over the past two years, and it appears it is just now getting around to informing the public and workers.
Atlanta, Georgia-based Acuity Brands said it identified a data security incident one year ago and it immediately took steps to secure its systems, and hired a third-party cybersecurity firm to conduct a thorough investigation.
“The investigation determined that an unauthorized person obtained access to some of Acuity’s systems on December 7 and December 8, 2021, and copied a subset of files out of its network during that time,” Acuity said in an advisory.
The files involved in the December 2021 incident may have included the name, Social Security number, and enrollment and claims information related to current and former employees’ participation in Acuity’s health plan. In addition, the information in the files may have included the name, driver’s license number, financial account information, and limited health information related to other aspects of an individual’s employment with Acuity, such as injury information related to workers compensation claims or related to requests for leave under the Family and Medical Leave Act. The types of information in the files were not the same for all individuals

December 2, 2022: Ransomware Attack for Cloud Provider, Rackspace

Cloud computing provider Rackspace said Tuesday morning a ransomware attack is behind its ongoing Hosted Exchange outage that started early Friday morning.
“As you know, on Friday, December 2nd, 2022, we became aware of suspicious activity and immediately took proactive measures to isolate the Hosted Exchange environment to contain the incident,” the company said in an update to the initial incident report. “We have since determined this suspicious activity was the result of a ransomware incident.”
The investigation, led by a cyber defense firm and Rackspace’s own internal security team, is in its early stages and is still investigating if any data ended up purloined.

March 11, 2022: Dairy Plant Operations Offline; No Milk at Schools in New England

After falling victim to cyberattack, HP Hood LLC took all operational systems at their plants (13) offline. As a result, they were unable to receive raw materials or produce milk and other alternative products. The cyberattack affected school lunch programs throughout New England

November 2, 2022: Cyberattack attack at Boeing Subsidiary Causes Widespread Flight Disruptions

Jeppesen, a wholly-owned Boeing subsidiary that provides navigation and flight planning tools, confirmed on Thursday that it is dealing with a cybersecurity incident that has caused some flight disruptions. Receipt and processing of so-called notice to air missions, which inform pilots and airlines about potential hazards during flights, have also been impacted, Jeppesen wrote.

Boeing has declined to comment on what caused the cyberattack or the full scope.

May 14, 2020: Texas DOT Operations Affected by Ransomware Attack

A ransomware attack affected the Texas government as hackers got into the network of the state’s Department of Transportation (TxDOT).
TxDOT is responsible for air, road, and railway transportation across Texas.

TxDOT said that it detected the attack on May 14, after finding unauthorized access to the agency’s network. Further examination determined that the event was part of a ransomware incident. Immediate action was taken to isolate affected computers from the network and block further unauthorized access. It is unclear how many systems are impacted.

UPDATE: the ransomware used was later identified as RansomEXX.

Pin It on Pinterest

Scroll to Top
Scroll to Top