lockbit3 attacks Southampton County Administration

Incident Date: Sep 14, 2022

Attack Overview

VICTIM

Southampton County Administration

INDUSTRY

Government

LOCATION

USA

ATTACKER

Lockbit

FIRST REPORTED

September 14, 2022

Request Removal

Southampton County Administration Targeted by Lockbit3 Ransomware Group

Victim Profile

Southampton County Administration, a key government entity in Virginia, has recently fallen victim to a cybersecurity breach. This organization plays a crucial role in the public sector, with its operations detailed on the county's official website. Leadership within the Administration department includes County Administrator Brian S. Thrower and Deputy County Administrator/Chief Financial Officer Lynette C. Lowe. The physical and mailing addresses for the county are respectively listed as 26022 Administration Ctr Dr., Courtland, VA 23837, and P.O. Box 400, Courtland, VA 23837.

Attack Details

In early September 2022, Southampton County Administration was compromised by a ransomware attack orchestrated by the Lockbit3 group. This incident involved unauthorized access to a server, leading to the encryption of its stored data. Despite this breach, the county managed to maintain uninterrupted essential operations. However, the exposure of a W-2 form on the dark web, alongside claims of stolen sensitive data by the attackers, marked a significant breach of security.

Data Compromised

The data potentially compromised in this attack includes personal identifiers such as names, addresses, driver's license numbers, and Social Security numbers. Confirmation has been made regarding the online posting of some of this stolen data by the attackers.

Ransom Demand

The Lockbit3 ransomware group has taken to their leak site to display the stolen data, offering options to 'destroy all information' or 'download data at any moment,' each at a cost of $90,000.

Response and Mitigation

Upon detection of the cyberattack, Southampton County Administration acted swiftly to contain the breach and initiated an in-depth investigation to ascertain the scope of compromised data. The county has also collaborated with premier external security experts to conduct a comprehensive review of their cybersecurity infrastructure.

Sources

Southampton County Administration
SC Magazine: Ransomware attack compromises Virginia county data
DataBreaches.net: Southampton County, Virginia reports ransomware incident
Infosecurity Magazine: PII May Have Been Stolen in Virginia County Ransomware Attack
The Tidewater News: Southampton County victim of ransomware incident
SecurityWeek: Virginia County Confirms Personal Information Stolen in Ransomware Attack

See Halcyon in action

Interested in getting a demo?
Fill out the form to meet with a Halcyon Anti-Ransomware Expert!

Let's get started

First Name

Last Name

Phone Number

Buying Timeframe

halcyon.ai is committed to protecting and respecting your privacy, and we’ll only use your personal information to administer your account and to provide the products and services you requested from us. From time to time, we would like to contact you about our products and services, as well as other content that may be of interest to you. If you consent to us contacting you for this purpose, please tick below to say how you would like us to contact you:

I agree to receive other communications from halcyon.ai and acknowledge Halcyon's privacy policy.

You may unsubscribe from these communications at any time. For more information on how to unsubscribe, our privacy practices, and how we are committed to protecting and respecting your privacy, please review our Privacy Policy.

By clicking submit below, you consent to allow halcyon.ai to store and process the personal information submitted above to provide you the content requested.

Back

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form.