June 11, 2020: Knoxville Hit By Ransomware Attack
The city of Knoxville, Tennessee, appears to be back up after shutting down part of its computer network Thursday as a result of a ransomware attack.
The attack was first noticed by members of the Knoxville Fire Department around 4:30 a.m. Thursday, according to a report in the Knoxville News Sentinel.
July 19, 2020: Hit By Ransomware, University of Utah Decides To Pay
ecurity experts say never pay a ransom if a system ends up taken over by ransomware. However, that is often easier said than done as the University of Utah paid over $450,000 to attackers after they infected a portion of its servers with ransomware.
January 23, 2021: Ransomware Attack on WestRock
WestRock, an Atlanta, GA-based company that involves in paper based packaging solutions, has been hit by a ransomware attack that disrupted its operations and information technology systems. Attack was highly sophisticated where hackers stole a portion of data from the servers and locked it down from access.
December 5, 2020: Home appliance giant Whirlpool hit in Nefilim ransomware attack
Home appliances giant Whirlpool suffered a ransomware attack by the Nefilim ransomware gang who stole data before encrypting devices.
Nefilim ransomware gang published files stolen from Whirlpool during a ransomware attack. The leaked data included documents related to employee benefits, accommodation requests, medical information requests, background checks, and more.
January 1, 2018: Winnti attack on Valve
Consequences not disclosed. ARD, a public broadcaster reported that company had been attacked by a group associated with Chinese government with malware which allows attackers to access victims network remotely.
December 16, 2019: Ryuk causes facility shutdown
Loss of view and control resulting in shutdown of facility for over 30 hours
December 13, 2019: Ransomware takes out Multiple PC Board facilities
Someone in Redmond got onto the internet and accidentally clicked on some links. The Redmond site was infiltrated and with ransomware which branched out to the Tucson facility, infecting multiple pcs and infrastructure there as well. Prototron shut everything down and did a complete rebuild, reinstalling operating systems and complete infrastructure rebuild. Affected sites in Redmond, WA & Tuscon AZ
October 10, 2019: NC Water authority hit with Ryuk Ransomware
ONWASA (North Carolina) was hit with Ryuk ransomware in middle of night of Oct 10 attacking the utility's servers and personal computers. This attack is following the spread of the "polymorphic" EMOTET that spread through their networks beginning on Oct 4. ONWASA CEO said that they experienced a catastrophic loss inside their computer network. ONWASA vowed not to pay any ransom and to instead “undertake the painstaking process of rebuilding its databases and computer systems from the ground up.”
February 13, 2021: Kia Motors Hit by Ransomware Attack
DoppelPaymer gang wants $20 million from Kia Motors America (KMA) for a decryptor or else it will leak data it stole from the California-based subsidiary of the South Korean-based auto giant.
Kia Motors America was hit by an attack nationwide on Saturday through its IT enterprise affecting their mobile UVO Link apps, phone services, payment systems, owner's portal, and internal sites used by dealerships, according to a report in Bleeping Computer.
Irvine, CA-based KMA has nearly 800 dealers in the USA with cars and SUVs manufactured out of West Point, Georgia. When visiting their sites, users are met with a message saying Kia is "experiencing an IT service outage that has impacted some internal networks."
February 5, 2021: Remote Access Leads To FL Water Supply Tampering
A quick thinking worker watched and quickly fixed an attack as a hacker using a Florida water treatment plant’s remote access capabilities broke in Friday and increased the amount of sodium hydroxide, or lye, to extremely dangerous levels.
In these times of increased work from home, questions remain as to how secure are company’s remote access capabilities, and how vigilant are those providers in seeing what is going on? In this case, it appears the water company’s remote access was not secure, but worker vigilance was on target.
The investigation into the hack is continuing after the attempted poisoning of the city of Oldsmar, Florida’s water supply, said Pinellas County Sheriff Bob Gualtieri said. Someone remotely accessed a computer for the city’s water treatment system and briefly increased the amount of sodium hydroxide by a factor of more than 100, Gualtieri said at a news conference.