A ransomware attack hit 23 local government entities in Texas last week, the Texas Department of Information Resources (DIR) has revealed.
The attack was observed on the morning of August 16 and appears to have been launched by a single threat actor, the DIR announcement reads.
The State Operations Center (SOC) was activated soon after the attack reports started to come in, and DIR says that all of the entities that were actually or potentially affected appear to have been identified and notified.
A total of twenty-three entities have been confirmed as impacted so far, and the responders are working on bringing the affected systems back online.
While the current focus is on recovery, the responders are also investigating the origin of the attack, although no information on the threat actor behind it has been revealed so far.
“The State of Texas systems and networks have not been impacted,” DIR revealed.
DIR and numerous other agencies have deployed resources to support the affected entities, including the Texas Military Department, Texas Division of Emergency Management, the Texas A&M University System’s Security Operations Center/Critical Incident Response Team, and the Texas Department of Public Safety, among others.
While no details have been provided to date on the ransomware used as part of the attack, ZDNet suggests it could be a malware family that encrypts files and renames them with the .jse extension.
The threat has been around for at least a year, standing out in the crowd because it does not leave a ransom note behind.
The Texas ransomware attack comes only a month after Louisiana schools were targeted in similar malware assaults, prompting Gov. John Bel Edwards to issue an emergency declaration.
Also last month, LaPorte County in Indiana reportedly paid cybercriminals over $130,000 after having its systems infected with Ryuk, a piece of ransomware that prompted Jackson County in Georgia to pay a $400,000 ransom.
Related: Louisiana Schools Suffer Cyberattacks Ahead of Year’s Start
Related: Indiana County Pays $130,000 in Response to Ransomware Attack: Reports
More from Ionut Arghire
- Former Ubiquiti Employee Who Posed as Hacker Pleads Guilty
- Atlassian Warns of Critical Jira Service Management Vulnerability
- Exploitation of Oracle E-Business Suite Vulnerability Starts After PoC Publication
- Google Shells Out $600,000 for OSS-Fuzz Project Integrations
- F5 BIG-IP Vulnerability Can Lead to DoS, Code Execution
- Flaw in Cisco Industrial Appliances Allows Malicious Code to Persist Across Reboots
- HeadCrab Botnet Ensnares 1,200 Redis Servers for Cryptomining
- Malicious NPM, PyPI Packages Stealing User Information
Latest News
- Fraudulent “CryptoRom” Apps Slip Through Apple and Google App Store Review Process
- US Downs Chinese Balloon Off Carolina Coast
- Microsoft: Iran Unit Behind Charlie Hebdo Hack-and-Leak Op
- Feds Say Cyberattack Caused Suicide Helpline’s Outage
- Big China Spy Balloon Moving East Over US, Pentagon Says
- Former Ubiquiti Employee Who Posed as Hacker Pleads Guilty
- Cyber Insights 2023: Venture Capital
- Atlassian Warns of Critical Jira Service Management Vulnerability
