Los Angeles Housing Authority Hit by Cactus Ransomware: Confirmed Data Breach
“`html
LA housing authority confirms breach claimed by Cactus ransomware
Summary: The Housing Authority of the City of Los Angeles (HACLA), one of the largest public housing authorities in the United States, confirmed that a cyberattack hit its IT network after recent breach claims from the Cactus ransomware gang.
About the Breach
Earlier this month, the Cactus ransomware gang claimed responsibility for a cyber attack on the HACLA’s IT network.
In response, HACLA confirmed that the attack had indeed occurred, confirming the breach declaration of the Cactus ransomware group.
HACLA’s Stance and Current Status
The housing authority has reported that an investigation is presently underway by professional cybersecurity teams to assess the magnitude of the potential data breach, the types of information accessed, and the number of individuals potentially affected.
Risk to Personal Information
HACLA provides public housing assistance to over 10,000 low-income households based in Los Angeles, California.
With such a vast database, there is potential risk of compromise to sensitive personal information such as social security numbers, financial records and other personally identifiable information.
What is Cactus Ransomware?
Cactus ransomware, a relatively new name in the ransomware scene, is a malicious software designed to block access to a computer system until a sum of money (ransom) is paid.
The Cactus group typically employs tactics such as spear-phishing emails and exploiting software vulnerabilities to gain access to their victim’s network.
Practical advice
For organizations dealing with sensitive information, it’s essential to employ strong cybersecurity practices to protect against ransomware threats.
These may include:
- Regularly backing up data
- Implementing an effective patch management process
- Providing regular employee training on recognising and avoiding phishing emails
- Enforcing stringent access controls to network resources
Furthermore, professionally managed encryption keys, two-factor or multi-factor authentication may add an extra level of security protecting organization’s assets from such attacks.
Follow-up Reading:
“`
