Skip navigation
Menu
News
394296350.jpg Bloomberg
Security>Attacks and Breaches

California Probes Cyberattack Against State’s Finance Department

The Russia-affiliated ransomware group known as LockBit claims responsibility.

(Bloomberg) -- California’s finance department has been hit by a cybersecurity attack, and a notorious ransomware group is claiming responsibility.

The Russia-affiliated group dubbed LockBit claimed responsibility for the ransomware attack on the agency, and said it has given the Department of Finance until Dec. 24 to pay up or else it will publish a cache of stolen files. The hacking group claims to have stolen 76GB of data, including IT and financial documents, confidential data and “sexual proceedings in court,” according to the group’s blog.

Related: Ransomware Security for IT Pros: 2022 Report

LockBit ransomware has been deployed against at least 1,000 victims since January 2020, when it first appeared, according to the US Justice Department. LockBit members have made at least $100 million in ransom demands and extracted tens of millions of dollars in actual ransoms, according to DOJ.

During a ransomware attack, hackers encrypt a victim’s data — and often steal files beforehand — and hold them hostage until a ransom is paid, usually in cryptocurrency. Sometimes hackers leak documents to put pressure on the victims to pay.

“While we cannot comment on specifics of the ongoing investigation, we can share that no state funds have been compromised, and the department of finance is continuing its work to prepare the governor’s budget that will be released next month,” California’s cybersecurity center said in a statement.

Governor Gavin Newsom must present his budget for the next fiscal year by Jan. 10. As of midday California time, the state’s website for past and current budgets remained inaccessible. The current budget allocated $38.8 million for cybersecurity efforts.

The cybersecurity center said the attack was “proactively identified through coordination with state and federal security partners.” The agencies that comprise the center, including the Office of Emergency Services, Department of Technology, California Military Department and California Highway Patrol, have responded to identify the threat, assess its extent and “evaluate, contain and mitigate future vulnerabilities.”

Hide comments

More information about text formats

Comments

  • Allowed HTML tags: <em> <strong> <blockquote> <br> <p>

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.
Publish
Recommended Reading
skull and crossbone icons on a digital background
'Sandworm' Group Is Russia's Primary Cyberattack Unit in Ukraine
Apr 17, 2024
padlock icon on an abstract background
Cisco Duo's Multifactor Authentication Service Breached
Apr 15, 2024
laptop with microsoft logo on the screen
U.S. Warns Agencies of Possible Breach via Microsoft Hack
Apr 11, 2024
Microsoft on front of a building
Feds to Microsoft: Clean Up Your Cloud Security Act Now
Apr 03, 2024