Massachusetts' City of Lowell has been claimed to be compromised by the Play ransomware operation, which was also behind the recent attack on the City of Oakland, California, according to The Record, a news site by cybersecurity firm Recorded Future.
Officials noted that the city had its networks, servers, and other systems disrupted by a "cyber-related incident" on April 24, with Play ransomware admitting on May 3 that it was responsible for the intrusion. Play ransomware claimed that it was able to purportedly exfiltrate personal data, government IDs, departmental documents, financial files, and budgets, with the stolen data to be released on May 10.
Investigation by state and federal law enforcement into the attack on Lowell is underway, with city officials noting that some delays in its services should be expected as it works on restoring its systems.
The intrusion comes after Play ransomware leaked more than 610 GB of Oakland government data over the past two months.
Vulnerabilities impacting cloud analytics and business intelligence software Qlik Sense have been exploited to facilitate the deployment of CACTUS ransomware in a new campaign, The Hacker News reports.
Cyber Resilience in the Ransomware and Wiper Era New Strategies for CISOs to Protect
The changing face of ransomware, and how to respond
Unveiling the Hidden Threat: Hybrid Attackers Leveraging Identities to Execute Ransomware
Get daily email updates
SC Media's daily must-read of the most current and pressing daily news