Home Security The City Of New Orleans Possibly Suffered Ryuk Ransomware Attack

The City Of New Orleans Possibly Suffered Ryuk Ransomware Attack

by ethhack

The City of New Orleans has emerged as the latest victim ransomware attack. The attack caused the city websites to go offline. Fortunately, the malware didn’t cause serious damage. However, more details are yet to come.

New Orleans Under Ransomware Attack

On Friday morning, the City of New Orleans suffered a ransomware attack. While the attack initially remained undisclosed after the incident, a press conference later confirmed the involvement of ransomware.

Following the attack, the city systems went offline out of caution. According to Beau Tidwell spokesperson for New Orleans Mayor LaToya Cantrell,

Out of an abundance of caution, all employees were immediately alerted to power down computers, unplug devices & disconnect from the city’s WiFi.

Officials assured that the ransomware didn’t cause much damage. Yet, specific information about the attack remained veiled as investigations continued.

Ryuk Ransomware Possibly Involved

Recently, the founder of Red Flare Security, Colin Cowie, has shared some insights about the ransomware attack. Precisely, he revealed the involvement of Ryuk ransomware in the attack.

Based on the analysis of the memory dumps he came across, and his findings shared with BleepingComputer, the involvement of Ryuk ransomware seems confirmed.

The memory dump found by Cowie is for an executable named ‘yoletby.exe’ and contains numerous references to the City of New Orleans including domain names, domain controllers, internal IP addresses, user names, file shares, and references to the Ryuk ransomware.

It is also likely that the attack could have involved Emotet and Trickbot as well.

Though, none of these details have received official endorsements yet. We still wait to hear more about the incident from the authorities.

Recently, Ryuk also preyed on a Spanish cybersecurity firm Prosegur. Though the firm contained the attack, it took them some time to restore their services.

Let us know your thoughts in the comments.

The following two tabs change content below.
Avatar
Abeerah has been a passionate blogger for several years with a particular interest towards science and technology. She is crazy to know everything about the latest tech developments. Knowing and writing about cybersecurity, hacking, and spying has always enchanted her. When she is not writing, what else can be a better pastime than web surfing and staying updated about the tech world! Reach out to me at: [email protected]
Avatar

Source link

Related Articles

Leave a Comment