Threat Watch

GrimSpider Suspected Behind Syracuse New York Library Attack and School District Attack

GrimSpider: On July 12th the computer systems for the Onondaga County, New York library was taken offline.  It was recently revealed that this attack, as well the attack on the Syracuse school district which took place three days earlier, was carried out using the Ryuk ransomware.  Ryuk has been seeing heavy use by GrimSpider in a number of high-profile attacks, including attacks over Christmas on a number of large print media outlets.  The school has already received a ransom demand but so far the library has not. The attack on the library has affected not only the library’s computer systems but also the public wifi provided by the library as well as the phone systems.  No comments have been made at this time about whether either organization has backups of their systems or if they intend to pay the ransom demand.

ANALYST NOTES