Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Data Breaches

Ransomware Gang Leaks Data Allegedly Stolen From Government Contractor

The LockBit ransomware gang leaks data allegedly stolen from government contractor Tyler Technologies.

The LockBit ransomware gang has leaked 1Gb of data allegedly stolen from the District of Columbia’s Department of Insurance, Securities and Banking (DISB).

The group claims to be in the possession of 800Gb of data pertaining to DISB, the US Securities and Exchange Commission (SEC), Delaware banking institutions, and other financial entities, and threatens to release it unless DISB pays a ransom.

The data appears to have been stolen from DISB’s STAR system client in late March, during a cyberattack on Tyler Technologies, a software and services provider for the public sector.

In separate incident notices, Tyler and DISB revealed that the attack involved unauthorized access to a cloud environment hosting DISB’s STAR system client data.

The system was immediately taken offline and, while file-encrypting ransomware was deployed on the compromised system, Tyler has been working on restoring the environment and associated data using available backups.

In an April 19 update, Tyler confirmed that information allegedly stolen from the STAR system was leaked online, but said it has yet to determine the full scope of the data breach.

Potentially compromised information, the contractor said, may include names, dates of birth, Social Security numbers, driver’s license numbers, and other information.

“We have confirmed evidence that the threat actor acquired information from the system. We are working with third-party cybersecurity forensic experts to identify the full impact. As of April 18, the threat actor published information they claim was acquired from the STAR system,” the company said.

Advertisement. Scroll to continue reading.

Tyler also noted that it has yet to identify individuals whose personally identifiable information (PII) might have been stolen in the attack and that it would start notifying them once the identification process is completed.

The attack, Tyler pointed out, was unrelated to a 2020 ransomware attack that impacted its internal corporate network and phone systems and forced it to shut down various systems, including its website.

The Texas-based Tyler Technologies provides property tax lifecycle management solutions, civic services solutions, a secure system for accessing official records, regulatory solutions, and integrated corrections, case management, and public safety solutions.

Related: Cannes Hospital Cancels Medical Procedures Following Cyberattack

Related: Watch Now: Ransomware Resilience & Recovery Summit Sessions Now on Demand

Related: LockBit Ransomware Gang Resurfaces With New Leak Site

Written By

Ionut Arghire is an international correspondent for SecurityWeek.

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join the session as we discuss the challenges and best practices for cybersecurity leaders managing cloud identities.

Register

The AI Risk Summit brings together security and risk management executives, AI researchers, policy makers, software developers and influential business and government stakeholders.

Register

People on the Move

Retired U.S. Army General and former NSA Director Paul M. Nakasone has joined the Board of Directors at OpenAI.

Jill Passalacqua has been appointed Chief Legal Officer at autonomous security solutions provider Horizon3.ai.

Cisco has appointed Sean Duca as CISO and Practice Leader for the APJC region.

More People On The Move

Expert Insights