On Friday, August 16, the Texas Department of Information Resources (DIR) reports 23 local governments in the state were infected with ransomware in what it described as a coordinated attack. "It appears all entities that were actually or potentially impacted have been identified and notified," DIR said. "Responders are actively working with these entities to bring their systems back online." Numerous state and federal agencies have been assisting the local governments with their response efforts, including the Texas Division of Emergency Management, the Texas Department of Public Safety, the FBI, and the Department of Homeland Security. DIR officials also stated that “the evidence gathered indicated the attacks came from one single threat actor,” and further analysis by cybersecurity researchers revealed the ransomware used in the attacks was Sodinokibi. Read the article at ZDNet.

For more information on the Sodinokibi ransomware, see “FBI PIN: Sodinokobi Ransomware.”