Georgia Court System Hit in Ransomware Attack (Jul 1, 2019)
The U.S. State of Georgia Court Systems have been targeted with a ransomware attack, resulting in IT systems being taken offline. While it remains unclear how many systems were compromised, a spokesman for the Administrative Office of the Courts has confirmed that not all court systems have been affected. Officials stressed that they do not store private information that is not a public document in these systems, and that no social security numbers or other such sensitive information would be compromised. As a precaution, the network was taken offline while trying to determine the attack’s extent.
Recommendation: The ransomware landscape continues to evolve and has become a significant threat to local government systems. The use of endpoint prevention systems can make all the difference between infection or not. In the case of any ransomware infection, the victim should avoid paying the ransom, and the infected system should be wiped and reformatted. Users with devices that are not configured for automatic backups are at serious risk of losing intellectual property and personal data. The best approach to the threat of ransomware is for all users to maintain secured backups of their data, keep their systems fully patched, and practice good security hygiene when browsing the internet.
Indicators of Compromise (IOCs) associated with this story can be viewed by ThreatStream users here to identify potential malicious activity.