The Port of Seattle Targeted by Ransomware Attack
The Port of Seattle recently confirmed that it was the victim of a ransomware attack. The attack took place on August 24, causing system outages that indicated a cyberattack. The Port, which also manages the Seattle-Tacoma International Airport, is currently dealing with the aftermath of the incident.
The Port has identified the criminal organization responsible for the attack as Rhysida. This group, known for its cybercriminal activities, was also behind a previous attack on the British Library. Despite demands for ransom, the Port has chosen not to pay, which may result in Rhysida posting stolen data on their dark web site.
An ongoing investigation is being conducted to determine the extent of data stolen by Rhysida. The Port has stated that some of their data was compromised in mid-to-late August. If any employee or passenger information was accessed, the Port has pledged to notify those affected.
Even days after the attack, airport systems were still experiencing disruptions. JS’s Devin Coldewey witnessed the impact of the attack firsthand while passing through the airport.
