Middleburg Weathers Cyber Attack, Loudon County
Breach Type –
Phishing, Data Breach
Loudon Now News
May 11th, 2023
- “The Town of Middleburg has reached out to 102 individuals whose personal identifying information may have been accessed by “malicious actors” during data breach in late January."
- “According to a town notice, sometime between Jan. 25 and Jan. 31 an employee’s Outlook email account was accessed by someone who then impersonated a vendor to request payment from the town. Once the breach was detected, the town worked with its IT contractor and cyber security experts to secure personal information and better protect the town’s network. No servers, systems, or other data was accessed.”
- "There is no definitive evidence that anyone’s personal information was accessed. However, because an unknown actor gained access to the employee’s email account, we are providing this notice out of an abundance of caution. To date, we have not received any indication that anyone’s information has been misused by an unauthorized individual,” the town stated.
- ”The town sent letters to 102 people whose information could have been access from the account to provide an update on the case, information about resources to protect their interests, and contact information if they need additional assistance.”
Read More
Hackers access several state employees' payroll data, Richmond County
Breach Type –
Hacking, Data Breach
NewsAdvance.com
April 10, 2023
- "Computer hackers intercepted log-in information from several state employees as the workers tried to access the state's human resources and payroll apps on their personal device”
- ”The Department of Accounts and Virginia Information Technologies Agency took action to halt the hacking after becoming aware of it a week ago Monday."
-
“The hackers used stolen log-in information to try to access employees' banking information, the agencies said.”
- ”So far, the agencies have identified three people who have been financially impacted by the incident.
Read More
City of Waynesboro targeted in cyber attack, Augusta County
Breach Type –
Unknown, Ransomware
NBC 29 News
March 8th, 2023
- “Some personal information in floating around in cyberspace after a ransomware attack against the city of Waynesboro."
- “The city’s manager, Mike Hamp, said in a statement they were notified of a potential cyberattack in January. It affected Waynesboro’s information technology infrastructure."
- "Hamp declined to meet or speak with NBC29, but in the statement he says the city took immediate action to remove the attack and put in place preventative security measures to “lessen the system’s vulnerability to cyberattacks.” He goes on to say that the city and the police department are trying to identify what happened.”
- ”The city manager added that anyone personally affected by the leak will be contacted.”
Read More
US Marshals hit with ‘major’ hack, sensitive data compromised, Arlington County
Breach Type –
Hacking, Data Breach
The Hill
February 27th, 2023
- “The United States Marshals Service says it was hit with a “major” security breach over a week ago, compromising systems that contained sensitive information."
- “U.S. Marshals Service spokesperson Drew Wade said in a statement to The Hill on Monday evening that the agency discovered the “ransomware and data exfiltration event” on Feb. 17, adding that it affected a “stand-alone” system. He said that after the discovery, the Marshals Service “disconnected” the system and the Justice Department initiated a forensic investigation.”
- ”A senior law enforcement official told NBC News that the hack did not affect the Witness Security Program, and that no one in the program is at risk due to it. The official added that the breach affected law enforcement sensitive information about the subjects of the agency’s investigations.”
Read More
Southampton County, Virginia reports ransomware incident
Breach Type –
Unknown, Ransomware
DataBreaches.net
November 25th, 2022
- “On September 6, 2022, a single server at Southampton was encrypted by a cyber criminal. Fortunately, Southampton fought off this cyber-attack with no interruption to essential County operations."
- "However, after Southampton recovered from this incident, a single W-2 form appeared on the dark web with the criminal claiming that they removed sensitive data from the encrypted Southampton server.”
- "The server in question held some archived County information."
Read More
Hampton Public Library website hacked, redirects to adult retail store
Breach Type –
Hacking, DoS
13 News Now
September 21st, 2022
- “City leaders created a new website after someone reportedly acted as a city employee to hack the public library's website domain."
- "The Hampton Public Library is making some big changes after someone hacked the website, redirecting people to an adult retail store website.”
- "A lot of times the threat actor gets in through a weak password or passwords that are shared. Multi-factor authentication everything that you have that next layer of authentication to get into the account."
Read More
Va. Agency's payroll management system 'paralyzed' by ransomware attack, State of Virginia
Breach Type –
Unknown, Ransomware
Richmond News
December 14th, 2021
-
“As Virginia struggles to control a ransomware attack on its legislative branch of government, an agency in the state’s executive branch also has been hit in a second attack that is global in scope.”
-
“The Department of Behavioral Health and Developmental Services said Tuesday that its IT system for managing employee payroll and time sheets has been “paralyzed” by a ransomware attack on the global network of the Ultimate Kronos Group, a digital cloud-based human resources management company.”
-
“At this time, we do not know if this is related to the ransomware attack over the weekend on Virginia’s legislative agencies”
- “There is no indication that information was compromised or that any DBHDS systems have been compromised, but it is clear that the operation of the KRONOS system has been paralyzed. What we do know is staff WILL be paid their normal compensation and on time.”
Read More
Virginia state agency hit with ransomware attack, State of Virginia
Breach Type –
Unknown, Ransomware
NBC News
December 14th, 2021
-
“A Virginia legislative branch agency has been hit by a ransomware attack, Gov. Ralph Northam’s office said Monday.”
-
“Northam’s spokeswoman, Alena Yarmosky, confirmed the attack on Virginia’s Division of Legislative Automated Systems.”
-
“The timing of the attack is particularly problematic, as lawmakers and staff are deep into preparations for a legislative session set to start in January.”
- “A ransom note with no specific amount or date was sent, according to the email sent Monday afternoon by Dave Burhop.”
Read More
Warren County recovering from March computer infiltration
Breach Type –Unknown, Malware
The Northern Virginia Daily
September 8th, 2021
-
“Warren County continues to update its technology months after a country-wide “infiltration” hampered government computer systems.”
-
“The infiltration, which occurred in March, prevented some of the county’s departments from accessing information needed to perform certain tasks or sending and receiving email. The infiltration did not compromise county data stored on servers, officials said.”
-
“But the incident, which also affected private and public systems in other states, spurred the Warren County to upgrade its technology.”
-
“Supervisor Delores R. Oates asked Jones where the county stands on recovering data, such as old emails, lost. Jones said the process involves recovering old emails from the server and transferring that date to a person’s email account. Jones said the recovery process is about 80% complete.”
-
“The Technology Department has since updated a main computer system and trained employees on how to back up its data every night, Jones explained. The county has upgraded its phone system, Jones said. The department also completed work to connect Energov with the county’s geographic information system, which will help the building inspections department to perform its duties. The technology department has also reviewed security systems and accessibility. The county also is forming an information technology committee made up of members from each department.”
Read More
Hampton Roads Sanitation District, Virginia Beach Independent City
Breach Type –
Unknown, Ransomware
The Virginian-Pilot
December 2nd, 2020
-
Ransomware used in cyberattack against sanitation district's network
-
Entire district's computer network was taken offline as safety precaution
-
Officials released a statement advising that customers could still make payments
Read More
City of Charlottesville, Albemarle County
Breach Type –
Other, Data Breach
Daily Progress
November 27th, 2019
-
Charlottesville, Virginia was victim of cyberattack for second time in a year
-
Third-party software for tax payments was breached
-
Officials unsure how many citizens were affected in the attack
Read More
City of Charlottesville, Albemarle County
Breach Type –
Phishing, Data Breach
CBS 19 News
September 25th, 2019
-
Over 10,000 utility customers in the Charlottesville area advised by city officials that their information was possibly leaked
-
City advised they were unaware of any misuse of the leaked information, informed affected customers to be safe
-
Leaked information included customer's names, addresses, SSNs, and driver's license information
Read More
Spotsylvania County
Breach Type –
Phishing, Other
Fredericksburg
August 15th, 2019
-
$600,000 was compromised in a recent phishing scheme within Spotsylvania County
-
Over half of the total sum had been restored due to Virginia State Police's efforts in restorations and investigations
-
The original intercepted payment was meant for a $1.2 Million football field for the local high school
Read More
Hanover County Online Payment System, Hanover County
Breach Type - Other, Data Breach
Data Breaches
January 15th, 2018
- Credit card information had been compromised
- Hackers intercepted payment information
- The system was put offline for further investigation
- Software was completely replaced to prevent this in the future
- County suspects all payment information was logged for months
Read More
Town of Christiansburg, Montgomery County
Breach Type - Phishing, Data Breach
Virginia First
November 29th, 2018
- Employee emails compromised in phishing scheme
- Hackers persistently sent phishing emails to Town officials for three months
- The Town’s customer financial data was possibly compromised in attack
Read More
Town of Round Hill, Loudoun County
Breach Type - Other, Data Breach
Round Hill VA
October 20th, 2018
- Town of Round Hill suffered data breach & destruction of electronic records
- Data Recovery is ongoing
- Independent technology consultant hired to perform internal investigation
Read More
Loudoun Now
October 22nd, 2018
- Town put new security protocols in place
- All passwords changed and access to servers limited
- Utility billing files and finance records kept on different system, safe from cyber attack
Read More
Department of Environmental Quality, Richmond City
Breach Type - Hack
Richmond Times-Dispatch
June 14th, 2018
- Website content management system contained vulnerability in software
- Vulnerability allowed hackers to access system
- Intrusion detected and quickly detained
Read More
City of Richmond
Breach Type - Ransomware
Richmond Free Press
April 6th, 2018
- Director of Richmond's IT department claims there have been 2-3 ransomware attacks on system
- All mitigated by IT team, using backups
- Did not call external contractor
Read More
State of Virginia Election System
Breach Type - Hack
USA Today
September 22nd, 2017
- Russian hackers attempted to infiltrate election systems during 2016 presidential elections
- U.S. Dept. Of Homeland Security notified states of attempted breaches
- States that were targeted included some key political battlegrounds such as Virginia
Read More
City of Charlottesville website
Breach Type - DDoS
Hack Read
August 12th, 2017
- Hacktivist group "Anonymous" takes credit for DDoS
- Hack response to white supremacy protesters hit
- Website forced to go offline
Read More
BACK TO TOP