recommended reading

Threatwatch

Ransomware Infects Michigan Utility Provider’s Business Systems

Network intrusion; Social engineering

A water and electricity authority in Lansing shut down its enterprise systems after someone in the company was tricked into clicking on a malicious link. The “phishing attack,” which deposited malware, only affected data on the utility’s corporate systems.

Lansing's BWL – Board of Water & Light – first noticed the successful breach early on April 25, and has since kept most information technology systems, including phone servers, offline.

The company says customer data has not been stolen (rather, only locked with encryption technology).

It took until May 2 for the utility’s customer service lines to return to normal service.

sector

Energy

reported

May 3, 2016

reported by

The Register

number affected

Unknown

location of breach

Michigan, United States

perpetrators

Criminals

location of perpetrators

Unknown

date breach occurred

Unknown

date breach detected

April 25, 2016