The Port of Seattle launched an announcement Friday confirming that it was focused by a ransomware assault.
The assault occurred on August 24, with the Port (which additionally operates the Seattle-Tacoma International Airport) saying it had “skilled sure system outages indicating a attainable cyberattack.”
The Port is now describing this as “a ‘ransomware’ assault by the felony group often called Rhysida.” (The group was additionally apparently accountable for final yr’s cyberattack on the British Library.) With the Port refusing to pay the ransom, Rhysida “might reply by posting knowledge they declare to have stolen on their darkweb website.”
“Our investigation of what knowledge the actor took is ongoing, but it surely does seem that some Port knowledge was obtained by the actor in mid-to-late August,” the Port mentioned, including that it’ll notify staff or passengers if it learns that any of their data was stolen.
TechCrunch’s Devin Coldewey really flew via the airport a couple of days after the assault, the place he noticed firsthand that many airport programs have been nonetheless down.
