Ryuk ransomware has struck a facility belonging to the U.S. Coast Guard (USCG), affecting industrial control systems, security cameras and more, according to the USCG.
The USCG didn’t reveal the name or location of the affected base, but says it affected a "Maritime Transportation Security Act (MTSA) regulated facility." The ransomware gained a foothold in USCG systems after an employee opened a phishing email and clicked on a link. “Once the embedded malicious link in the email was clicked by an employee, the ransomware allowed for a threat actor to access significant enterprise Information Technology (I.T.) network files, and encrypt them, preventing the facility’s access to critical files,” explains the Coast Guard.
According to a news report, this is not the first time this has happened. Just six months ago, the Coast Guard issued an advisory regarding cybersecurity attacks against shipboard networks.