Newsday reports that Suffolk County, New York, has been warned about a "possible ransomware event" in June, or nearly three months before being compromised on Sept. 8.
No ransomware attack has been going on and no malicious activity has been detected by the county's IT systems during the time the tip was sent, said Suffolk Information Technology Coordinator Brian Bartholomew in an email thread at a time.
Nearly 4TB of data has been stolen as a result of the attack and Suffolk County has already incurred $140 million in payments to vendors since the intrusion.
"There is still an ongoing forensic assessment to determine exactly when and how the threat actors accessed county systems. Our team of cybersecurity experts are working to piece together these details, while we continue with our safe and secure rolling restoration," said Suffolk County spokesperson Nicole Russo.
Meanwhile, TechWorks CEO Chris Coluccio noted that Suffolk's systems may have been compromised days or weeks prior to the attack. "There should have been systems in place that would have caught that," he added.
SiliconAngle reports that ransomware attacks against the educational sector have significantly increased from 2018 to 2022 and are expected to reach a record high this year, with 85 attacks recorded during the first half of 2023 being almost two times higher than the same period in 2022.
Air Canada has confirmed being impacted by a data breach that compromised some of its employees' limited personal data and other records, reports The Record, a news site by cybersecurity firm Recorded Future.