Bekker's Blog

Blog archive

Summer of Ransomware: Security Attacks Hit Cities in Texas, Florida

There's a Texas-sized ransomware problem brewing on the heels of similar incidents in Florida.

The Texas Department of Information Resources (DIR) on Friday revealed that more than 20 entities, mostly smaller local governments in the state, were impacted by a ransomware attack.

"On the morning of August 16, 2019, more than 20 entities in Texas reported a ransomware attack," the Texas DIR said in an update Saturday evening that put the total number of affected agencies at 23. State government agencies were not among those affected.

The attacks seem to be coordinated. "At this time, the evidence gathered indicates the attacks came from one single threat actor. Investigations into the origin of this attack are ongoing; however, response and recovery are the priority at this time," the updated statement said.

Officials swung into action on Friday in a response that included, in addition to the DIR, the Texas Division of Emergency Management, the Texas Military Department, the Texas A&M University System's Security Operations Center/Critical Incident Response Team, the Texas Department of Public Safety, the Texas Public Utility Commission, the U.S. Department of Homeland Security, the Federal Bureau of Investigation, the Federal Emergency Management Agency, and other federal agencies.

The ransomware incidents in Texas follow a trio of incidents in Florida in Riviera Beach, Lake City and Key Biscayne. Two of those incidents involved huge ransomware payouts -- $600,000 for Riviera Beach and $460,000 for Lake City -- most of which was covered by insurance.

It is unclear whether cities are more heavily targeted for ransomware than other types of entities. On the one hand, small and local governments often have budget struggles that result in outdated IT infrastructure, and there are many documented cases of governments falling victim to attacks.

On the other hand, it's easier for a company to conceal a ransomware attack. Government agencies are more accountable to public scrutiny and less able to choose to keep an incident quiet.

Posted by Scott Bekker on August 20, 2019 at 12:49 PM


Featured

  • The 2021 Microsoft Product Roadmap

    From Windows 10X to the next generation of Microsoft's application server products, here are the product milestones coming down the pipeline in 2021.

  • Kaseya Unlocking REvil-Encrypted Data Using Universal Key

    IT solutions firm Kaseya is now using a "universal decryptor key" for customers affected by a REvil ransomware attack.

  • Microsoft Unveils Plans To End Microsoft Stores for Business and Education

    The online Microsoft Store for Business and Microsoft Store for Education will be ending in the "first quarter of 2023," per a Microsoft document as well as a Wednesday announcement.

  • Microsoft Acquires Startup Company CloudKnox Security

    Sunnyvale, Calif.-based CloudKnox Security is getting acquired by Microsoft, according to a Wednesday announcement.