P2019-ND-049

On November 18, 2018, the Organization discovered that it was the victim of a ransomware attack. The Organization retained third party computer forensic experts to investigate and assist with decryption. The investigation found that the threat actor?s activities were limited to encrypting files and that there was no evidence that any files were accessed, viewed or exfiltrated, with one exception: the threat actors clicked on an existing shortcut on November 18, 2018, which linked to a server that contained the personal information at issue for 68 drivers that worked for the Organization. The Organization cannot determine whether this information was accessed, viewed or exfiltrated. The breach was confirmed to be contained on November 20, 2018.

File Type: pdf
File Size: 331 KB
Categories: 2019