HQ/EMEAFind out how we can help your business
The ALPHV ransomware gang, also known as BlackCat, has claimed responsibility for the attack on the Florida circuit court, which impacted the state courts in Northwest Florida.
The cybercriminal incident occurred last week, and the initial investigation believes that the attackers could have acquired sensitive information such as Social Security numbers and resumes of court employees and judges.
Moreover, the ransomware group asserted that they had obtained a comprehensive network map of the court’s systems, including local and remote service credentials.
The affected judiciary system in Florida might have ignored the ALPHV ransomware group and its threats.
The ALPHV ransomware website has displayed Florida’s First Judicial Circuit, indicating that the court has either not engaged in talks with the ransomware group or has rejected their demands.
However, the court may have taken these threats lightly since they were the ones who disclosed the attack last week. Unfortunately, the attack disrupted its operations on the morning of October 2nd.
Consequently, court proceedings in Escambia, Okaloosa, Santa Rosa, and Walton counties, all part of the Circuit, could experience significant interruptions for an extended period.
Furthermore, the system could prioritise court proceedings now, while they should also reschedule or cancel other non-essential proceedings.
During the current investigation into the hack, judges in the four counties have been in contact with petitioners and attorneys regarding their weekly scheduled hearings. Despite the disruption, the court’s facilities have operated without hassle. The court has not verified the claims made by the ALPHV ransomware gang regarding the attack.
The ALPHV ransomware operation first emerged in November 2021. Some researchers claimed that this group is a rebrand of DarkSide/BlackMatter.
This group gathered international notoriety after their cyberattack on the Colonial Pipeline, which captured the attention of law enforcement agencies worldwide.
After a rebranding as BlackMatter in July 2021, their malicious activities suddenly stopped in November 2021 when authorities seized their servers and the development of a decryptor that could exploit a vulnerability in their ransomware. Unfortunately, the ALPHV ransomware group remained a malicious entity that targeted global enterprises and its ability to adapt and refine its tactics continually.
