Tennessee Cyber Attacks

Infrastructure Affected

Public Safety
Government
Medical
Education
 
Tennessee.jpg
 

Public Safety

Spring Hill City & 911

Breach Type - Ransomware

WKRN

  • Starts as a city hack
  • Employee opens infected email
  • Hackers demand $250,000
  • Dispatchers most affected, writing info on notepads
Read More
WKRN

  • Citizens unable to make online payment for 10 days
  • Hack shut down all mobile data terminals in police cars
Read More
SC Magazine

  • Public safety and city emails will be restored first
  • No information has been removed by hackers
Read More

 
Henry County 911 Systems

Breach Type - Ransomware

Paris Post Intelligencer

  • Department of Homeland Security named Henry County as one of many cyber attacks
  • Virus infected the Computer Aided Dispatch System
  • Dispatchers could take calls, not locations
  • Passwords of computer programs not strong enough
Read More

 
Murfreesboro Police & Fire Dept. Hit

Breach Type - Ransomware

The Tennessean

  • WannaCry ransomware
  • 19 computers and 2 file servers were down
  • Most affected data is not retrievable, however no significant files lost
Read More

 
Dickson Sheriff’s Office Pays Ransom

Breach Type - Ransomware

The Tennessean


Read More

 
BACK TO TOP

Local Government

Murfreesboro Water Department Bill Payment Portal, Rutherford County

Breach Type – Hacking, Other: Website Defacement

News Channel 5

  • Murfreesboro Water Department victim of hacking incident
  • Officials claimed attack was isolated to online bill payment service
  • Online bill pay service taken offline while officials worked on resolution
Read More

 
City of Collierville, Shelby County

Breach Type - Unknown, Ransomware

Fox 13 Memphis

  • It was announced that the city is under attack by ransomware
  • The city had not released much information on how the attack has played out but currently several files are being blocked from access
  • As the attack was being accessed not much information has been acquired, operations are maintained as normal
Read More

 
Sevier County

Breach Type - Ransomware

The Mountain Press

  • Sevier County admits computers down due to ransomware attack
  • Hack infected computers for several days
  • Sevier worked to restore systems
Read More

 
Knox County Election Commission's Website

Breach Type - Hack

WBIR

  • During Knox County elections, hackers launch DDoS attacks on Election Commission's website
  • Election results delayed; however, not compromised/altered
  • Knox Co. Election officials manually printing and relaying election results to local news sources
Read More

 
Hendersonville, Sumner County

Breach Type - Phishing

Post and Courier

  • Hendersonville employee falls victim to phishing scheme
  • Employee entered credentials into malicious website
  • Hackers infiltrated email account and sent phishing emails to employee's contacts
Read More

 
TN Comptroller’s Office

Breach Type - Hack

WSMV

  • Moroccan Islamic Union-Mail claims responsibility for posting threats to website
  • Hackers posted notice on the Comptroller’s website
  • Website taken offline until IT support could thoroughly examine incident
Read More

 
Springfield, Robertson County

Breach Type - Ransomware

The Tennessean

  • Ransomware virus hijacks city hall computer
  • No customer data lost during attack
  • Did not pay $1,000 ransom
  • Wiped servers and reinstated data from backup servers
Read More

 
Anderson County

Breach Type - Hack

Wate.com

  • Security breach
  • More than 1,800 people could be affected
  • Breach could compromised personal information
Read More

 
BACK TO TOP

Medical

Alive Hospice, Davidson County

Breach Type – Phishing, Data Breach

Health IT Security

  • After unusual activity was found connected to 4 employee email accounts, Alive Hospice changed the accounts’ passwords and contacted forensic investigators
  • Email accounts impacted had a total of 10,893 patient records and other personal information which varied by account
  • Evidence of exfiltration was not found, but could not be ruled out
Read More

 
Aspire Health, Davidson County

Breach Type - Phishing, Data Breach

Tennessean

  • Aspire health employee fell victim to phishing attack
  • Hackers exfiltrated some patient data, forwarding private emails to an external account
  • The health company immediately locked the compromised account
Read More

 
Alive Hospice, Davidson Co.

Breach Type - Phishing, Data Breach

Data Breaches

  • Alive Hospice employees fall victim to phishing attacks
  • Protected Health Information potentially accessed by hackers
  • Alive offered identity protection services to its patients
Read More

 
Smith Dental

Breach Type - Ransomware

Data Breaches

  • Smith Dental falls victim to ransomware
  • Addressed attack on their webpage, believing no patient data was compromised
  • Out of precaution, advises patients to monitor personal info.
Read More

 
Decatur General Hospital

Breach Type - Cryptomining/Hack

Data Breaches

  • Hackers install cryptomining malware on Decatur's server
  • The EMR vendor housing the server, promptly notified Decatur
  • Hackers did not target patient data in any way
  • Out of precaution Decatur notified patients of incident
Read More

 
Medhost Website

Breach Type - Ransomware

HIS Talk

  • Hackers target Medhost website, posted public ransom note online
  • Threatened to sell private patient data on dark web, if they did not receive ransom
  • Threatened to participate in media release on the general vulnerabilities of HIPAA
  • Medhost restored website and did not acknowledge the hack
  • Hackers continually targeted Medhost, forcing them to restore systems on multiple occasions
Read More

 
PrimaryCare Specialists, Inc.

Breach Type - Ransomware

Local Memphis

  • Hackers infiltrated two servers
  • Accessed personal data of patients, for only five minutes, & encrypted all files
  • PrimaryCare notified potentially affected patients
Read More

 
BACK TO TOP

Education

Columbia State Community College, Maury County

Phishing, Malware

Columbia Daily

  • A virus forced the closure of the community college campus for two days
  • After an infected email was opened, the virus spread to the communications department
  • The virus has continually adapted and is becoming difficult to eradicate from the systems
Read More

 
Pellissippi State Community College, Knox County

Phishing, Data Breach

Knox News

  • More than 200 students, former and current, had personal information exposed
  • Investigation showed that 1,800 emails were accessed and 222 of them contained personal information
  • This is believed to be an isolated incident and the data may not have been dispersed
Read More

 
Pellissippi State Community College, Knox County

Breach Type - Phishing, Data Breach

Daily Times

  • Over 200 students could be in danger of identity theft after exposure
  • Students were contacted accordingly and informed of risk
  • Investigations showed 1,800 emails were exposed and over 200 contained sensitive information
Read More

 
East Tennessee State University, Washington County

Breach Type - Phishing, Data Breach

WJHL

  • Two employees clicked on malicious links sent via phishing scheme
  • Cyber attack believed to be a targeted event
  • Private data at risk affecting 7,700 people
Read More

 
Jefferson County Schools, Jefferson Co.

Breach Type - Phishing, Other

Citizen Tribune

  • Cyber attack targets Jefferson County Schools
  • Infected email system through phishing scheme
  • Hackers infiltrated system and sent mass, spam emails to school contacts
Read More

 
Southern College of Optometry, Shelby Co.

Breach Type - Phishing, Data Breach

Office of the Vermont Attorney General

  • Employee email account affected in phishing scheme
  • Private information and Social Security numbers of students stored on email account
  • Southern College of Optometry providing one year of credit monitoring
Read More

 
TN Ready Online testing & Questar

Breach Type - Hack

Times Free Press

  • Statewide testing experiences deliberate cyber attack
  • State postponed testing for students
  • State vendor Questar blocked source of unusual traffic patterns to prevent attack reoccurrence
Read More
Citizen Tribune

  • Questar proved to be direct victim of attack
  • Since implemented, TNReady caused issues for the state
  • Teachers & staff relieved due to test postponing
Read More

 
Maury County Public Schools District

Breach Type - Ransomware

Columbia Daily Herald

  • School districts computer locked down & files encrypted by hackers
  • No data believed to be accessed or stolen
  • District working to restore systems & recover backups
  • Cyber insurance may reimburse district for work cost
Read More

 
Vanderbilt University

Breach Type - Hack

Tennessean

  • Hackers target printers, inexplicable anti-Semitic flyers being printed
  • University notified federal authorities
  • Similar printing hacks hit several universities across the county
Read More

 

BACK TO TOP