KCATA is a bi-state public transit company serving seven counties of Missouri and Kansas, working 78 bus routes and 6 MetroFlex routes utilizing a fleet of 300 buses. The firm stories that 10.5 million folks use their companies in a 12 months.
On Wednesday, the group introduced that it suffered a ransomware assault that affected all its communication methods.
“The major buyer influence is that regional RideKC name facilities can not obtain calls, nor can any KCATA landline.”
The announcement offers various cellphone numbers for Freedom and Freedom-On-Demand Paratransit clients who must schedule a visit.
Despite the disruption in name facilities, KCATA routes are nonetheless working as standard, so passenger transit operations have not been impacted.
“All companies are working, together with fixed-route buses, Freedom and Freedom-On-Demand paratransit service,” defined KCATA.
Logging in to ridekc.org and utilizing the transit app to obtain bus schedule info additionally work usually.
“KCATA is working across the clock with our exterior cyber professionals and can have methods again up and working as quickly as attainable,” concludes the announcement.
A big concern in ransomware incidents is the opportunity of information theft, together with private and fee particulars of consumers, which on this case would expose many individuals utilizing KCATA companies.
The company has not elaborated on the opportunity of registered members and go holders having had their delicate info uncovered to cybercriminals.
Update 1/27 – Medusa ransomware claimed accountability for the assault on KCATA, and posted information samples allegedly belonging to the group on their extortion portal on the darkish internet.
The menace actors have given KCATA 10 days to barter a decision, and their monetary calls for have been set to a fee of $2,000,000.
Also, Medusa provides the choice to increase the deadline for making the stolen information accessible to the general public, for $100,000/day.