Add as a preferred source on Google


Bekker's Blog by Scott Bekker, Editor in Chief

Blog archive

Summer of Ransomware: Security Attacks Hit Cities in Texas, Florida

There's a Texas-sized ransomware problem brewing on the heels of similar incidents in Florida.

The Texas Department of Information Resources (DIR) on Friday revealed that more than 20 entities, mostly smaller local governments in the state, were impacted by a ransomware attack.

"On the morning of August 16, 2019, more than 20 entities in Texas reported a ransomware attack," the Texas DIR said in an update Saturday evening that put the total number of affected agencies at 23. State government agencies were not among those affected.

The attacks seem to be coordinated. "At this time, the evidence gathered indicates the attacks came from one single threat actor. Investigations into the origin of this attack are ongoing; however, response and recovery are the priority at this time," the updated statement said.

Officials swung into action on Friday in a response that included, in addition to the DIR, the Texas Division of Emergency Management, the Texas Military Department, the Texas A&M University System's Security Operations Center/Critical Incident Response Team, the Texas Department of Public Safety, the Texas Public Utility Commission, the U.S. Department of Homeland Security, the Federal Bureau of Investigation, the Federal Emergency Management Agency, and other federal agencies.

The ransomware incidents in Texas follow a trio of incidents in Florida in Riviera Beach, Lake City and Key Biscayne. Two of those incidents involved huge ransomware payouts -- $600,000 for Riviera Beach and $460,000 for Lake City -- most of which was covered by insurance.

It is unclear whether cities are more heavily targeted for ransomware than other types of entities. On the one hand, small and local governments often have budget struggles that result in outdated IT infrastructure, and there are many documented cases of governments falling victim to attacks.

On the other hand, it's easier for a company to conceal a ransomware attack. Government agencies are more accountable to public scrutiny and less able to choose to keep an incident quiet.

Posted by Scott Bekker on August 20, 2019


Featured

  • Microsoft Dismantles RedVDS Cybercrime Marketplace Linked to $40M in Phishing Fraud

    In a coordinated action spanning the United States and the United Kingdom, Microsoft’s Digital Crimes Unit (DCU) and international law enforcement collaborators have taken down RedVDS, a subscription based cybercrime platform tied to an estimated $40 million in fraud losses in the U.S. since March 2025.

  • Sound Wave Illustration

    CrowdStrike's Acquisition of SGNL Aims to Strengthen Identity Security

    CrowdStrike signs definitive agreement to purchase SGNL, an identity security specialist, in a deal valued at about $740 million.

  • Microsoft Acquires Osmos, Automating Data Engineering inside Fabric

    In a strategic move to reduce time-consuming manual data preparation, Microsoft has acquired Seattle-based startup Osmos, specializing in agentic AI for data engineering.

  • Linux Foundation Unites Major Tech Firms to Launch Agentic AI Foundation

    The Linux Foundation today announced the creation of a new collaborative initiative — the Agentic AI Foundation (AAIF) — bringing together major AI and cloud players such as Microsoft, OpenAI, Anthropic and other major tech companies.

Most   Popular