P2021-ND-043

On December 5, 2020, the Organization’suffered a ransomware attack on its computer network. A high percentage of the Organization’s information technology infrastructure was infected, with several servers and endpoints encrypted. A malicious external actor committed the cybersecurity breach. The Organization reported that it did not find any evidence of misuse of personal employee information; however, it did find evidence that personal employee information was exfiltrated from its network and posted to the threat actor?s data leak website. The Organization determined there is no evidence of malware or vulnerabilities relevant to this incident remaining in its network environment.

File Type: pdf
File Size: 617 KB
Categories: 2021