CYBERNEWSMEDIA Network:||
CYBERNEWSMEDIA
CYBERNEWSMEDIA

Cybersecurity News, Insights & Analysis

Latest
TrueConf Zero-Day Exploited in Asian Government Attacks
In Other News: ChatGPT Data Leak, Android Rootkit, Water Facility Hit by Ransomware
Critical ShareFile Flaws Lead to Unauthenticated RCE
Mobile Attack Surface Expands as Enterprises Lose Control
React2Shell Exploited in Large-Scale Credential Harvesting Campaign
AD · 970×250

Data Breaches·Ransomware

Pennsylvania Attorney General Confirms Data Breach After Ransomware Attack

The Inc Ransom group has taken credit for the hack, claiming to have stolen several terabytes of data. The post Pennsylvania Attorney General Confirms Data Breach After Ransomware Attack appeared first on SecurityWeek.

Pennsylvania Attorney General ransomware breach

The Pennsylvania Office of the Attorney General (OAG) has confirmed suffering a data breach after it was targeted in a ransomware attack earlier this year.

The attack on the Pennsylvania OAG came to light in August, when the organization announced that a cyberattack had disrupted its website, email accounts, and phone lines. Service outages lasted for roughly three weeks.

The OAG confirmed in late August that it had been targeted in a ransomware attack that involved the deployment of file-encrypting malware, but said no ransom had been paid.

The Inc Ransom group took credit for the attack on the Pennsylvania OAG on September 21, claiming to have stolen 5.7 TB of data and gaining “access to internal network of FBI”.

The hackers allegedly obtained information from a wide range of investigative units within the attorney general’s office, as well as details on the organization’s use of Cellebrite software, which government agencies use to extract and analyze data from mobile devices and computers. 

In a data incident notice published on Friday, the Pennsylvania OAG said its investigation confirmed potential access to certain files, including ones storing personal information such as names, Social Security numbers, and medical information.

It’s unclear how many individuals are impacted by the data breach.

“We have no evidence of the misuse, or attempted misuse, of any potentially involved information,” the notice reads. 

While this may be technically accurate based on the company’s limited scope of internal evidence, from a cybersecurity standpoint, these types of statements are unconvincing, considering that ransomware groups typically publish stolen data or share it privately in closed cybercriminal circles. 

The Pennsylvania OAG has not shared any technical information on the attack, but cybersecurity researcher Kevin Beaumont reported in September that the organization was likely penetrated via the exploitation of a Citrix Netscaler vulnerability dubbed CitrixBleed2.

Related: Logitech Confirms Data Breach Following Designation as Oracle Hack Victim

Related: Princeton University Data Breach Impacts Alumni, Students, Employees

Related: Data Stolen in Eurofiber France Hack

RelatedDoorDash Says Personal Information Stolen in Data Breach

Latest News

CYBERNEWSMEDIAPublisher