The Scottish Environmental Protection Agency (SEPA) has confirmed that it was hit by a ransomware attack last month and continues to face its impact.
The SEPA communications center, internal systems and procedures have been affected by the attack, which took place on Christmas Eve. The Scottish Government, which is responsible for protecting the environment, has confirmed that 1,2 GB of data was stolen during the attack - including personal data. information related to SEPA staff.
Despite the ransomware attack, SEPA's ability to provide flood forecasting and warning services and other services has not been discontinued.
However, while the infected systems have been isolated, the latest SEPA update on the ransomware attack says that the recovery will take a long time and that some systems will continue to be "affected for a long time".
Data theft is very common in ransomware gangs. They use the stolen data to blackmail the victims threatening that they will leak their information if they are not paid the ransom they ask for.
SEPA has not yet analyzed how hacker were able to enter the network and the investigation into the incident is ongoing.
"We know that this incident affected the Scottish Environmental Protection Agency and we are working with the law enforcement to understand its impact, "an NCSC spokesman told ZDNet.
Ransomware has become one of the most annoying and destructive cyber attacks that an organization can face and hackers do not seem to stop this type of attacks as they are blackmailing successfully the victims who in the end pay the ransom they are asked for.
Source of information: zdnet.com