Pennsylvania Cyber Attacks

Infrastructure Affected

Public Safety
Government
Medical
Education
 
Pennsylvania.jpg
 

Public Safety

Luzerne County Government Systems & Sheriff's Office, Luzerne County

Breach Type - Phishing, Malware

Times Leader

  • Luzerne County hit with cyber attack via e-mail attachment that shut down several servers
  • 911 department and emergency management agency unaffected due to utilizing isolated servers
  • Officials were unsure when exactly the virus had infected the system, likely remained dormant for some time
Read More
Gov Tech

  • Servers that were once targeted are assumed to be online and cleared following public release
  • First expected to be restored are the databases and systems associated with the county prison system and other branches
  • The systems were shut down to quarantine and stop any spread of the virus within the network preventing workers uploading onto networks
Read More

 
Chester County Government & 911 Dispatch, Chester County

Breach Type - Malware

Patch

  • Online systems and dispatch were rendered offline in weekend attack
  • Chester County Government has put in full effort to resolve issues
  • Online services are still impacted as progress is being made
Read More

 
City of Allentown

Breach Type - Hack

The Morning Call

  • Malware infects system
  • Shuts down financial & public safety operations
  • Estimated $1M for removal of malware
  • PD cannot access databases controlled by PA state police
Read More

 
Mt. Holly Springs PD

Breach Type - Ransomware

ABC 27

  • Email from “FedEx” leads to exploitation of computer services
  • Hackers demanded $500 in bitcoin
  • Computer was not set up to general server
  • None of the files lost were vital
Read More

 
BACK TO TOP

Local Government

Philadelphia Court System (First Judicial District), Philadelphia County

Breach Type - Unknown, Malware

Philly

  • The First Judicial Court experienced a virus attack leading them to quarantine systems
  • No data was compromised and all court proceedings occurred nominally
  • Impact was not seen during court operations due to virus being treated immediately now
Read More

 
City of Washington, Washington County

Breach Type - Ransomware

WPXI

  • Computers were shut down in the City of Washington due to a large scale ransomware attack
  • The origin of the virus is still unknown as investigations are still underway over this seemingly isolated incident
  • It is unknown if this was a ransomware based attack as all infected files were removed
Read More

 
State of PA Department of Corrections

Breach Type - Hacking, Data Breach

Fox 43

  • Vulnerability in third party vendor compromised inmate private data
  • Department of Corrections notified of hackers exfiltrating sensitive data
  • 13,791 inmates and employees potentially affected
Read More

 
The Pennsylvania Department of Health

Breach Type - Hacking, Other

DataBreaches

  • Pennsylvania Department of Health internal website hacked
  • Sensitive patient information unaltered
  • Website defacement main goal of cyber attack
Read More

 
Westmoreland Housing Authority, Westmoreland County

Breach Type - Ransomware

TribLive

  • Hackers demand ransom over $40M
  • Cyber-attack rendered phones and computers inoperable
  • Housing authority debating paying ransom or independently restoring servers
Read More

 
Bucks County

Breach Type - Phishing/Other

The Intelligencer

  • Bucks County employee email account compromised
  • Hackers use county email to send malicious attachments
  • Cyber-attack origin unknown
  • Unknown how many people impacted by attack
Read More

 
East Cocalico Township Tax Collector, Lancaster Co.

Breach Type - Hack

The Euphrata Review

  • Tax Collector computer hit with cyber attack
  • Sophisticated hacker traced to Ukraine
  • Investigation ongoing
  • Notified citizens to watch accounts for fraud
Read More

 
Strasburg, Lancaster

Breach Type - Phishing

Fox 43

  • Hackers hit email system 3 times
  • Residents receiving emails from Strasburg offices, encouraged not to open
  • Strasburg office working with IT department to restore its systems
Read More

 
City of Hermitage

Breach Type - Phishing

WFMJ

  • Foreign hackers attempt to trick city finance office into sending money to supplier in Illinois
  • Supplier in Illinois would then wire money overseas
  • Claimed that the city owed $23,000
Read More

 
Bucks County

Breach Type - Phishing

Bucks County Courier Times

  • Bucks Co. Falls victim to malicious phishing campaign
  • PDF attachment infected system with malware"
  • When clicked, would infect victims computer and send out more fraudulent emails
Read More

 
Dauphin County, Harrisburg

Breach Type - Ransomware

NBC News

  • Pennsylvania Senate Democrats hit with ransomware
  • Worked with law enforcement agencies and Microsoft to resolve the problem
Read More
Penn Live

  • Regained access to their work email accounts
  • Wireless service was restored to Senate office
  • Senators' Web sites all appeared to be accessible
  • Microsoft loans laptops as temporary work platform
  • Old hardware cleansed and data restored
Read More

 
Allegheny County

Breach Type - Ransomware

Dark Reading

  • State prosecutor's office paid attackers $1,400 in Bitcoin to free its data
  • Hit with Avalanche botnet network
  • Employee opened a link which infected computer systems
Read More

 
BACK TO TOP

Medical

Ellwood City Medical Center, Lawrence County & Beaver County

Breach Type - Unknown, Malware

Ellwood City Ledger

  • It was announced that the attack, determined to be a virus, had finally been contained
  • There is no signs that any private patient information had been exposed or taken
  • Investigations are continuing in an attempt to prevent any continual occurrences and repeat occurrences
Read More

 
Eurofins Lancaster Laboratories, Lancaster

Breach Type - Unknown, Ransomware

Lancaster Online

  • The ransomware attack lead to the compromise of several facilities causing them to be disrupted
  • Several employees were unable to work due to hardware being corrupted and unusable with this new variant of malware
  • This malware was so largescale it was able to cause disruption across several countries affecting IT systems
Read More

 
The May Eye Care Center & Associates, York County

Breach Type - Ransomware

Data Breaches

  • May Eye Care Center’s server and electronic medical records system compromised in ransomware attack
  • Patient Health information and limited financial information stored on compromised server
  • Hackers potentially breached private information
  • May Eye Care Center notified the affected individuals
Read More

 
Children’s Hospital of Philadelphia, Philadelphia County

Breach Type - Phishing, Data Breach

Children's Hospital of Philadelphia

  • 2 phishing incidents impacted operations at Children’s Hospital of Philadelphia
  • Unauthorized access was detected, and CHOP immediately launched investigation
  • Email accounts contained sensitive PHI, potentially compromising those affected
Read More

 
UPMC Cole, Potter Co.

Breach Type - Phishing, Data Breach

Olean Times Herald

  • 790 patients informed of potential PHI data breach
  • Two phishing attacks targeted UPMC Cole email accounts
  • No medical record systems breached
Read More

 
Women's Health Care Group of Pennsylvania

Breach Type - Ransomware

Healthcare IT News

  • Ransomware infected a server & workstation at one of Women's Health Care practices
  • Officials isolated the infected server & workstation from the network
  • The health system could not determine if patient data was acquired or viewed by hackers
  • 300,000 patients potentially affected by breach
Read More

 
Heritage Valley Health Systems

Breach Type - Ransomware

WPXI News

  • Ransomware attack hits globally, infecting Heritage Valley Health systems in four PA counties
  • Implemented anti-virus software to defend against attack
  • Staff resorted to downtime procedures, making operational adjustments to ensure safe patient care
Read More

 
Pennsylvania Ambulatory Surgical Center

Breach Type - Ransomware

HIPAA Journal

  • Staff members alerted their IT department when they could not access files
  • IT department discovered ransomware infected the servers
  • Restored all systems without paying ransom to hackers
  • Sent breach notification letters to 13,000 potentially affected individuals
Read More

 
Main Line Health

Breach Type - Phishing

Data Breaches

  • Employee fell victim to hack by responding to phishing scheme
  • Affected all personal info of Main Line employees
  • Main Line Health alerted IRS and FBI to pursue investigation
Read More

 
BACK TO TOP

Education

Newport School District, Perry County

Breach Type - Phishing, Malware

Penn Live

  • Computers were infected by a virus that came through an email
  • The virus was hidden among a marketing scheme compromising staff information
  • It took several weeks to fix and no student information was compromised
Read More

 
Franklin Regional High School

Breach Type - DDoS/Other

Bleeping Computer

  • Student purchased BetaBooter, an IP stressing platform, to launch DDoS attacks on high school
  • Attacks targeted Franklin Regional - affecting over a dozen school districts on shared server infrastructure
  • DDos interrupted the network from 10-45 minutes every time
Read More

 

BACK TO TOP