Bekker's Blog

Blog archive

Summer of Ransomware: Security Attacks Hit Cities in Texas, Florida

There's a Texas-sized ransomware problem brewing on the heels of similar incidents in Florida.

The Texas Department of Information Resources (DIR) on Friday revealed that more than 20 entities, mostly smaller local governments in the state, were impacted by a ransomware attack.

"On the morning of August 16, 2019, more than 20 entities in Texas reported a ransomware attack," the Texas DIR said in an update Saturday evening that put the total number of affected agencies at 23. State government agencies were not among those affected.

The attacks seem to be coordinated. "At this time, the evidence gathered indicates the attacks came from one single threat actor. Investigations into the origin of this attack are ongoing; however, response and recovery are the priority at this time," the updated statement said.

Officials swung into action on Friday in a response that included, in addition to the DIR, the Texas Division of Emergency Management, the Texas Military Department, the Texas A&M University System's Security Operations Center/Critical Incident Response Team, the Texas Department of Public Safety, the Texas Public Utility Commission, the U.S. Department of Homeland Security, the Federal Bureau of Investigation, the Federal Emergency Management Agency, and other federal agencies.

The ransomware incidents in Texas follow a trio of incidents in Florida in Riviera Beach, Lake City and Key Biscayne. Two of those incidents involved huge ransomware payouts -- $600,000 for Riviera Beach and $460,000 for Lake City -- most of which was covered by insurance.

It is unclear whether cities are more heavily targeted for ransomware than other types of entities. On the one hand, small and local governments often have budget struggles that result in outdated IT infrastructure, and there are many documented cases of governments falling victim to attacks.

On the other hand, it's easier for a company to conceal a ransomware attack. Government agencies are more accountable to public scrutiny and less able to choose to keep an incident quiet.

Posted by Scott Bekker on August 20, 2019


Featured

  • Report: Security Initiatives Can't Keep Pace with Cloud, AI Boom

    The increasingly fast adoption of hybrid, multicloud, and AI systems is easily outgrowing existing security measures, according to a recent global survey by the Cloud Security Alliance (CSA) and exposure management firm Tenable.

  • World Map Image

    Microsoft Taps Nebius in $17B AI Infrastructure Deal To Alleviate Cloud Strain

    Microsoft has signed a five-year, $17.4 billion agreement with Amsterdam-based Nebius Group to expand its AI computing capabilities through third-party GPU infrastructure.

  • Microsoft Brings Copilot AI Into Viva Engage

    Microsoft 365 Copilot in Viva Engage is now generally available, extending Copilot's AI-powered assistant capabilities deeper into the Viva platform.

  • MIT Finds Only 1 in 20 AI Investments Translate into ROI

    Despite pouring billions into generative AI technologies, 95 percent of businesses have yet to see any measurable return on investment.