1 min read

Indiana National Guard hit by ransomware

Filip TRUȚĂ

October 23, 2018

Indiana National Guard hit by ransomware

The Indiana National Guard has posted a notice revealing it has fallen victim to a ransomware attack that compromised identifying information of its personnel.

An anonymous attacker, or group of attackers, reportedly infiltrated a “nonmilitary” server belonging to the National Guard, which contained “identifying information of its personnel,” according to a local publication.

The server contained information on civilian and military Guard members, the report says. An investigation into the breach has led state officials to believe the attack was not targeted.

“As a result of this action we are in the process of notifying personnel that may be affected, and that they should be alert for suspicious activity or fraudulent accounts being opened in their name,” the Guard said in a news release.

The ransomware strain used in the attack is not mentioned. However, a recent spike in ransomware attacks on US infrastructure has brought to light a new ransomware strain in the Troldesh/Crysis family that carries the “Gamma” moniker in its encryption extension. Gamma is essentially a sub-family of the larger Crysis ransomware family.

Analyzing the strain, Bitdefender researchers found Gamma leverages Remote Desktop Protocol (RDP) vulnerabilities and brute-force techniques (on endpoints with weak credentials). However, Troldesh/Crysis ransomware is typically deployed in large, targeted campaigns. If the Indiana State Police is correct about the attack not being targeted, the ransomware that infected the Guard”s systems likely was not a Crysis variant.

tags


Author



Right now

Top posts

Watch Out for These Ongoing Bank of America Phishing Campaigns Targeting Customers in the US

Watch Out for These Ongoing Bank of America Phishing Campaigns Targeting Customers in the US

July 16, 2021

3 min read
How to protect yourself against cyberstalking

How to protect yourself against cyberstalking

July 06, 2021

2 min read
The Top Five Security Risks Smartphone Users Face Today

The Top Five Security Risks Smartphone Users Face Today

July 02, 2021

4 min read
Phishing Alert: Scammers Use Fake SharePoint and DocuSign Messages to Steal Users’ Login Credentials

Phishing Alert: Scammers Use Fake SharePoint and DocuSign Messages to Steal Users’ Login Credentials

July 02, 2021

3 min read
Your Doxxing Dossier Will Keep Growing Thicker Until You See the Danger

Your Doxxing Dossier Will Keep Growing Thicker Until You See the Danger

June 30, 2021

2 min read
Mobile security threats: reality or myth?

Mobile security threats: reality or myth?

June 13, 2021

3 min read

FOLLOW US ON

SOCIAL MEDIA


You might also like

Fraud Family cybercrime ring under the spotlight as arrests made in the Netherlands Fraud Family cybercrime ring under the spotlight as arrests made in the Netherlands
Graham CLULEY

July 23, 2021

3 min read
Homoglyph domains used in BEC scams shut down by Microsoft Homoglyph domains used in BEC scams shut down by Microsoft
Graham CLULEY

July 22, 2021

3 min read
China Sets Up New Worrying Vulnerability Disclosure Rules China Sets Up New Worrying Vulnerability Disclosure Rules
Silviu STAHIE

July 20, 2021

1 min read