The Scottish Environment Protection Agency (SEPA) has confirmed that it was hit by a ransomware attack last month and is continuing to feel the impact, according to ZDNet. The cyberattack was carried out on Christmas Eve. The government regulator representing Scotland’s government also confirmed that 1.2GB was stolen in the attack. The attack also affect the operation of SEPA in providing flood forecasting and warning services, as well as regulation and monitoring services. While the organisation itself hasn’t confirmed what form of ransomware it has fallen victim to, Conti ransomware has claimed the attack.
<p style=\"font-weight: 400;\">Nowadays, threat actors specialising in ransomware tend not to stop at the first set of ransom demands. It can be far more lucrative if these criminals also release some of the stolen data on the dark web – and far more damaging to the organisation targeted. </p> <p style=\"font-weight: 400;\"> </p> <p style=\"font-weight: 400;\">Claiming responsibility can also add weight to further attacks when potential victims research the possible outcome if they are, unfortunately, attacked. Although it is nearly impossible to locate suspects in cyber offences, such a release of data should be treated as a credible threat, which far too often leaves organisations stuck between a rock and a hard place. </p> <p style=\"font-weight: 400;\"> </p> <p style=\"font-weight: 400;\">We are now seeing a rise in this doubly impactful use of ransomware that can be highly lucrative for criminal gangs. Therefore, companies and individuals must be on even higher alert to phishing attempts, which are still the most likely attack vector.</p>