Stories
Slash Boxes
Comments

SoylentNews is people

US Coast Guard Discloses Ryuk Ransomware Infection at Maritime Facility

posted by janrinok on Wednesday January 01 2020, @05:37PM   Printer-friendly
from the how-many-times-must-we-say-"don't-open-suspicious-emails"? dept.

upstart writes in with an IRC submission for Anonymous_Coward:

US Coast Guard discloses Ryuk ransomware infection at maritime facility:

An infection with the Ryuk ransomware took down a maritime facility for more than 30 hours; the US Coast Guard said in a security bulletin it published before Christmas.

The agency did not reveal the name or the location of the port authority; however, it described the incident as recent.

"Forensic analysis is currently ongoing but the virus, identified as 'Ryuk' ransomware," the US Coast Guard (USCG) said in a security bulletin meant to put other port authorities on alert about future attacks.

USCG officials said they believe the point of entry was a malicious email sent to one of the maritime facility's employees.

"Once the embedded malicious link in the email was clicked by an employee, the ransomware allowed for a threat actor to access significant enterprise Information Technology (IT) network files, and encrypt them, preventing the facility's access to critical files," the agency said.

The USCG security bulletin describes a nightmare scenario after this point, with the virus spreading through the facility's IT network, and even impacting "industrial control systems that monitor and control cargo transfer and encrypted files critical to process operations."

Coast Guard officials said the Ryuk infection caused "a disruption of the entire corporate IT network (beyond the footprint of the facility), disruption of camera and physical access control systems, and loss of critical process control monitoring systems."

The maritime facility -- believed to be a port authority -- was forced to shut down its entire operations for more than 30 hours, the Coast Guard said.

Original Submission

 
This discussion has been archived. No new comments can be posted.
US Coast Guard Discloses Ryuk Ransomware Infection at Maritime Facility | Log In/Create an Account | Top | 13 comments | Search Discussion
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.

  • (Score: 0) by Anonymous Coward on Wednesday January 01 2020, @06:45PM

    by Anonymous Coward on Wednesday January 01 2020, @06:45PM (#938318)

    Back then there were several platforms, two were AFS and Novell Netware. The former faded away from active neglect.

    Well, AFS is still with us. IBM released it to the community about 20 years ago and it is being developed on as OpenAFS. I think one of the principals there has even been putting out a commercial release under a different name, but I don't know about its compatibility.

    Primary use is in academia though, because in 2020 federated filesystems are not that appropriate nor useful for most users. Yes, we need an object storage (and management!) system for corporate use, but managers are still on the "outsource everything" bandwagon.