Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Cybercrime

‘Coordinated’ Ransomware Attack Hits 23 Towns in Texas

A ransomware attack hit 23 local government entities in Texas last week, the Texas Department of Information Resources (DIR) has revealed.

A ransomware attack hit 23 local government entities in Texas last week, the Texas Department of Information Resources (DIR) has revealed.

The attack was observed on the morning of August 16 and appears to have been launched by a single threat actor, the DIR announcement reads.

The State Operations Center (SOC) was activated soon after the attack reports started to come in, and DIR says that all of the entities that were actually or potentially affected appear to have been identified and notified.

A total of twenty-three entities have been confirmed as impacted so far, and the responders are working on bringing the affected systems back online.

While the current focus is on recovery, the responders are also investigating the origin of the attack, although no information on the threat actor behind it has been revealed so far.

“The State of Texas systems and networks have not been impacted,” DIR revealed.

DIR and numerous other agencies have deployed resources to support the affected entities, including the Texas Military Department, Texas Division of Emergency Management, the Texas A&M University System’s Security Operations Center/Critical Incident Response Team, and the Texas Department of Public Safety, among others.

While no details have been provided to date on the ransomware used as part of the attack, ZDNet suggests it could be a malware family that encrypts files and renames them with the .jse extension.

Advertisement. Scroll to continue reading.

The threat has been around for at least a year, standing out in the crowd because it does not leave a ransom note behind.

The Texas ransomware attack comes only a month after Louisiana schools were targeted in similar malware assaults, prompting Gov. John Bel Edwards to issue an emergency declaration.

Also last month, LaPorte County in Indiana reportedly paid cybercriminals over $130,000 after having its systems infected with Ryuk, a piece of ransomware that prompted Jackson County in Georgia to pay a $400,000 ransom.

Related: Louisiana Schools Suffer Cyberattacks Ahead of Year’s Start

Related: Indiana County Pays $130,000 in Response to Ransomware Attack: Reports

Written By

Ionut Arghire is an international correspondent for SecurityWeek.

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Understand how to go beyond effectively communicating new security strategies and recommendations.

Register

Join us for an in depth exploration of the critical nature of software and vendor supply chain security issues with a focus on understanding how attacks against identity infrastructure come with major cascading effects.

Register

Expert Insights

Related Content

Cybercrime

The changing nature of what we still generally call ransomware will continue through 2023, driven by three primary conditions.

Cybercrime

As it evolves, web3 will contain and increase all the security issues of web2 – and perhaps add a few more.

Cybercrime

A recently disclosed vBulletin vulnerability, which had a zero-day status for roughly two days last week, was exploited in a hacker attack targeting the...

Cybercrime

Luxury retailer Neiman Marcus Group informed some customers last week that their online accounts had been breached by hackers.

Cybercrime

Zendesk is informing customers about a data breach that started with an SMS phishing campaign targeting the company’s employees.

Artificial Intelligence

The release of OpenAI’s ChatGPT in late 2022 has demonstrated the potential of AI for both good and bad.

Cybercrime

Satellite TV giant Dish Network confirmed that a recent outage was the result of a cyberattack and admitted that data was stolen.