Louisiana Cyber Attacks

Infrastructure Affected

Public Safety
Government
Medical
Education
 
Back to Archive
Louisiana.jpg
 

Public Safety

Louisiana Public Facilities Authority (LPFA) victim of ransomware, East Baton Rouge Parish

Breach Type – Unknown, Data Breach

Data Breaches

  • “Our investigation indicates the attack may have gone on over a period of weeks and the attackers may have gained access to personally identifiable information of some of our customers, including but not limited to customer names and banking financial data...”
  • “The LPFA’s education division, the Louisiana Education Loan Authority (Lela), also stores limited student loan data on the LPFA system servers, which may hold personal information for borrowers, including, but not limited to, names, social security numbers, physical and email addresses, phone numbers, and loan balance information."
  • "We have reported this attack to the appropriate State of Louisiana entities and U.S. federal level and collaborated with them to investigate this attack. We are confident the attack has been stopped and the attacker’s access has been closed."
Read More

 
Lafourche Parish Sheriff's Office, Lafourche Parish

Breach Type – Phishing, Other

WDSU

  • Sheriff's office responded to an email from a fake company and bank account providing instructions to change bank information and approximately $347,707 was sent to the hacker's account
  • Attack spans back to late 2018 when the crime took place and a report was sent to the FBI and Louisian Attorney General of the missing funds
  • No employee of the Lafourche Parish Sheriff's Office was reported to be involved in perpetrating the crime
Read More

 
Covington Police, Fire, and City, St. Tammany Parish

Breach Type – Hacking, DDoS

WWLTV

  • The city has lost access to all of its systems in recent cyber attack
  • Police, Fire, and other city employees were unable to use their systems and had to resort to other means
  • It is unknown the extent of the attack or how long its duration will persist
Read More

 
Louisiana State Government, State of Louisiana

Breach Type – Unknown, Ransomware

The Advocate

  • Motor vehicle and other state departments disrupted in cyberattack
  • IT personnel disabled computers affected by the virus
  • Most recipients of SNAP were able to utilize their card despite attack
Read More
WBRZ

  • Attack prevented law enforcement from being able to access background checks or histories
  • Noted as a safety hazard for police and potential threat allowing warranted persons to walk
  • Officers and Dispatch only have access to local physical copies of warrants and other information
Read More

 
East Baton Rouge Sheriff’s Office, East Baton Rouge Parish

Breach Type – Hacking, Other (Website Defacement)

The Advocate

  • Sheriff's office website hacked with disturbing message
  • Officials advised that bad actor was unable to access data
  • Website eventually taken down and replaced with 404 error message
Read More

 
Lafayette Parish Sheriff's Office

Breach Type - Virus

KADN News 15

  • Virus takes systems offline at Lafayette Parish Sheriff's Office
  • Information on inmate database missing as a result
  • Email system down
  • Network technicians working to restore & repair records
  • Virus similar to attack on Iberia Parish Sheriff's Office which hit weeks before
Read More

 
Virus Hits Iberia Parish Sheriff’s Office

Breach Type - Ransomware

KLFY

  • FBI Cyber Crime Unit involved to investigate
Read More
KATC

  • Personal information was not stolen
  • Systems reconfigured
  • Ransom not paid
Read More

 
BACK TO TOP

Local Government

Work continues around the clock to get HiRE site back up and functioning, State of Louisiana

Breach Type – Unknown, Malware

Louisiana Workforce Commission

  • ”Work is currently underway to restore the Louisiana Workforce Commission’s HiRE website (https://www.louisianaworks.net/hire/) after Geographic Solutions (GSI), the company that operates it, discovered an attempted malware attack that required it to take state labor exchanges and unemployment claims systems offline.”
  • “The HiRE website is used to file unemployment claims, job searches and other functions. According to GSI, there was no data breach and the personal information of HiRE users was not compromised.”
  • “This outage impacts the near 11,000 people currently filing continued claims for unemployment in Louisiana. GSI has prioritized Louisiana for restoring the HiRE website, and we remain fully committed to working with them to bring our systems back online as soon as possible.”
  • “This outage will not prevent otherwise eligible claimants from receiving unemployment insurance benefits…”
Read More

 
Ouachita Parish Public Library Recovering From Malware Attack

Breach Type – Unknown, Malware

KNOE News 8

  • The outages which began after a malware attack on April 21st include the online catalog, phone systems, public computers, Wi-Fi, and more
  • It is not known who is behind the attack, but no ransom has been requested to this point and no personal information was taken as part of the breach
  • Since the breach, library employees have been managing check-outs and returns by hand
Read More

 
US Criminal Court Hit by Conti Ransomware; Critical Data at Risk

Breach Type – Unknown, Ransomware

HackRead

  • Conti ransomware operators attacked the Fourth District Court of Louisiana and posted proof of attack on their Dark Web site accessible through the Tor browser
  • A US criminal court has become the victim of Conti ransomware strain, operated by a hacking group of the same name. The hackers have also published several court documents online
  • Reportedly, the Fourth District Court of Louisiana’s website was targeted in the attack. After successfully stealing the court documents related to witnesses, jurors, and defendant pleas, the hackers posted proof of the hack attack on its Dark Web page
Read More

 
Orleans Parish Assessor's Office, Orleans Parish

Breach Type – Unknown, Ransomware

NOLA

  • Following ransomware cyberattack parish's website remained operational
  • Officials declined to confirm whether they paid a ransom
  • Bad actors are believed to have not stolen sensitive data during attack
Read More

 
City of New Orleans, Orleans Parish

Breach Type – Unknown, Ransomware

NOLA

  • Ransomware cyberattack used against New Orleans government
  • City systems and website were down during attack
  • Emergency services remained unaffected
Read More

 
City of New Iberia, Iberia Parish

Breach Type – Unknown, Ransomware

Iberia Net

  • Louisiana city hit with ransomware cyberattack during city council meeting
  • IT officials noticed attack as it was happening
  • National Guard and State Police were assisting in the investigation
Read More

 
St. James Parish Government, St. James Parish

Breach Type – Unknown, Ransomware

Fox 8

  • St. James Parish government forced to release statement regarding cyberattack
  • Phone lines remained down and services were limited
  • Statewide agencies assisted parish government with getting network working
Read More

 
Town of Winnsboro (Utility Billing System), Franklin Parish

Breach Type - Unknown, Malware

Hanna Pub

  • Winnsboro's utility billing system breached, investigated by Sheriff's Office and FBI
  • Multiple $1,000 withdrawals electronically stolen from utility billing account
  • Cyber attackers imitated passwords, imitated bank routine, and committed fraud
  • Malware discovered in billing computer however customer information was safe
  • Investigators believe malware utilized by German group
Read More

 
City of Lake Charles, Calcasieu County

Breach Type - Phishing, Other

KPLC-TV

  • City of Lake Charles launched investigation due to unauthorized access of City’s information technology systems
  • No evidence of misuse of information has surfaced
  • City’s email server temporarily unavailable in addition to other internal systems
Read More

 
Bossier City Water Bill Pay System, Bossier Parish

Breach Type - Other/Vulnerability, Data Breach

ArkLaTex

  • Bossier City water customers discover unauthorized charges to their accounts
  • Customers’ financial information potentially exposed through data breach
  • Bossier conducting forensic investigation
Read More

 
Securities and Exchange Commission

Breach Type - Phishing

Cyber Scoop

  • Eastern European hacking group
  • Released malware through phishing emails
  • Hackers used multi stage infection to target specific U.S. businesses
  • After a specific file in Louisiana, where severs were turned offline when notified about attack
Read More

 
Baton Rouge municipality & Louisiana State Government

Breach Type - Hack

Vocativ

  • Hackers affiliated with “Anonymous” attack two government website
  • Hackers state purpose is to show police brutality
  • Hackers claim to contain private police officer information
  • Compile document of news articles, audio, & video of shootings for Philando Castile & Alton Sterling
Read More

 
Louisiana DMV

Breach Type - Hack

Deep Dot Web

  • Hacker known as “NSA”
  • Selling over a quarter million driver license records on dark web
  • Data on dark web is legitimate and for sale by “NSA”
Read More

 
BACK TO TOP

Medical

Hive Starts Dumping Patient and Employee Data from Baton Rouge General Health System, East Baton Rouge Parish

Breach Type – Unknown, Ransomware

Data Breaches

  • "On Tuesday, Hive added the health center to their dedicated leak site, claiming that they encrypted Baton Rouge General on June 29. They dumped a lot of personal and protected health information to support their claims of having exfiltrated data."
  • "The data are not from just the medical center, however, but appear to include files from the larger health system, which may be why on some date unknown to DataBreaches, but after July 15, Baton Rouge General Health System posted an incident notice on its website."
  • "Bell said the county does have protocols in place in case of a cyber-attack, which were followed Wednesday morning.”
  • "On June 28, 2022, GHS became aware of suspicious activity related to certain GHS computer systems. GHS immediately launched an investigation, with the assistance of third-party forensic specialists, to determine the nature and scope of the activity."
Read More

 
Baton Rouge General Responds to Cyber Attack, East Baton Rouge Parish

Breach Type – Unknown, Malware

WAFB 9 NEWS

  • “BRG is working through the effects of a cyber attack that began Tuesday.”
  • “First, and most importantly, the attack has not changed our ability to care for patients. We are continuing to provide patient care at all locations.”
  • “The only thing that’s a little different today (Wednesday, June 29) is that we’re temporarily charting the old-fashioned way – on paper – until we can safely bring our electronic medical record and other patient systems back online.”
  • “We are working closely with federal and state officials as well as our security vendors to ensure our patient data remains secure.”
Read More

 
Pan American Life, Orleans Parish

Breach Type – Hacking, Data Breach

Nola

  • Pan Am Health shut down systems in March 2021 in response to discovering patient data had been compromised
  • Company will be contacting potentially affected individuals directly
  • The company will also be offering "additional services" to those who have been impacted
Read More

 
LSU Health New Orleans, Orleans Parish

Breach Type – Phishing, Data Breach

KADN

  • The health systems became aware of a bad actor gaining access to an employees email inbox
  • Bad actors seemed to gain access in September prompting a response in the same month
  • It is believed that the bad actors did not gain access to any sensitive information
Read More

 
Our Lady of the Lake Regional Medical Center (OLOL Foundation), East Baton Rouge Parish

Breach Type – Unknown, Ransomware

The Advocate

  • The OLOL database was compromised following a ransomware attack on the organization
  • In a public statement the foundations president stated that their software Blackbaud had announced it was attacked
  • In an attempt to protect all the customer’s data Blackbaud paid the bad actors ransom demands
Read More

 
Baton Rouge Clinic, East Baton Rouge Parish

Breach Type - Unknown, Malware

BR Proud

  • The clinic made a public release regarding a recent hack that impacted services
  • All services are currently available and will be in foreseen future
  • Restoration efforts were being made as phone services remained offline
Read More

 
Magnolia Pediatrics, Ascension Parish

Breach Type – Other, Ransomware

The Advocate

  • Pediatric center in Louisiana victim of ransomware cyberattack
  • FBI investigated attack, center officials advised families register fraud alerts with credit bureau
  • Officials believed no information had been taken during the attack
Read More

 
Imperial Health, Calcasieu Parish

Breach Type – Unknown, Ransomware

HIPAA Journal

  • 111,000 patients of health center likely had personal information compromised
  • Bad actors downloaded ransomware onto health center network, encrypted files
  • No evidence of data breach, however impossible to rule out according to officials
Read More

 
Louisiana Health Cooperative Inc. & Rehabilitation

Breach Type - Ransomware

HealthIT Security

  • Louisiana Health indirectly victimized by ransomware infection of SummitRe
  • Though investigation is ongoing, no evidence has surfaced of patient data misuse
  • 8,000 individuals could be affected by the breach
Read More

 
Summit Reinsurance Services, Inc.

Breach Type - Ransomware

My LAHC

  • SummitRe notifies patients of ransomware attack
  • Hackers encrypted one of its servers containing sensitive client info
  • SummitRe did not find evidence of access/misuse of information
Read More

 
BACK TO TOP

Education

Avoyelles Parish School District, Avoyelles Parish

Breach Type – Unknown, Ransomware

KALB

  • Cyber attack was able to render network systems off-line prompting investigations
  • Public officials noted that a ransom was requested but officials quickly contacted state police
  • It is believed that systems will be returned to normalcy but it is unknown when systems will be functional again
Read More

 
Morris Jeff Community School, Orleans Parish

Breach Type – Unknown, Malware

WWL

  • School district was victim of malware cyberattack
  • IT personnel disabled district's network to mitigate potential damage
  • Officials believed student information had not been accessed
Read More

 
Jefferson Parish Schools, Jefferson Parish

Breach Type – Unknown, Data Breach

The New Orleans Advocate

  • Nearly 42,000 text messages were sent to student families
  • Text messages contained student logon information
  • Officials believed student's personal information remained intact
Read More

 
ITI Technical College, East Baton Rouge Parish

Breach Type – Unknown, Ransomware

The Advocate

  • Communications crippled in ransomware hit on college
  • College forced to use only paper during cyberattack
  • School database encrypted, held for ransom by bad actors
Read More

 
St. Landry Parish School System, St. Landry Parish

Breach Type – Unknown, Malware

KLFY

  • Staff discovered cyberattack and took school network offline
  • Email and other services remained down after the attack
  • Officials stated that safeguards likely mitigated damage
Read More

 
Baton Rouge Community College, East Baton Rouge Parish

Breach Type – Unknown, Ransomware

Gov Tech

  • Louisiana State Police investigated ransomware cyberattack against college
  • Officials disabled all servers while they checked for any damage
  • State and college officials assisted by National Guard
Read More

 
Tangipahoa Parish School System, Tangipahoa Parish

Breach Type – Unknown, Malware

Security Magazine

  • School hit with malware cyber attack, e-mail and phone lines down
  • School superintendent advises that their office is on heightened alert
  • Tangipahoa Parish school IT department disabled IP phones to mitigate spread
Read More

 
Sabine Parish School District, Sabine Parish

Breach Type – Unknown, Malware

Data Breaches

  • Sabine Parish School District hit with malware attack
  • School systems were impacted, district sought state aid
Read More
ArkLaTex

  • School officials believed no student or staff information was compromised
  • Officials stated that the attack was still undergoing investigation
  • School board advised that Sabine Parish was not the only district attacked
Read More

 
Monroe City School District, Ouachita Parish

Breach Type - Unknown, Malware

KNOE

  • The school district’s systems were shut down due to a virus attack
  • Some concerns were shared over this attack being a ransomware attack but no evidence points to it being a ransomware attack
  • In order to conserve and promote investigations, the servers were individually shut down and analyzed to isolate the incident
Read More

 
Caddo Parish School Board, Caddo Parish

Breach Type - Phishing, Other

KSLA

  • Schools lost nearly 1 Million in a phishing scheme
  • Hackers posed as an employee with a spoofed email
  • School was directed to send nearly a million dollars to false accounts
  • Authorities attempting to trace and recover the money
  • Schools have added new safeguards and software
Read More

Iberia and St. Martin Parish School Board Websites

Breach Type - Hack

KATC

  • Websites hacked to display pro-ISIS propaganda
  • Hackers could not access personal information
  • Webpages shut down to restore host website
Read More


 
BACK TO TOP