Thousands of Inland Revenue files became the target of a crypto locking attack.
It received phishing emails targeting customers.
The department also received phishing emails attempting to obtain money, information or to compromise the Inland Revenue environment.
Source: https://www.reseller.co.nz/article/633824/cryptolocker-malware-hits-ird-locks-3500-files/
TPRM report: https://scoringcyber.rankiteo.com/company/inland-revenue-department
"id": "inl8345622",
"linkid": "inland-revenue-department",
"type": "Ransomware",
"date": "02/2018",
"severity": "75",
"impact": "2",
"explanation": "Attack limited on finance or reputation"
{'affected_entities': [{'industry': 'Public Sector',
'name': 'Inland Revenue',
'type': 'Government Department'}],
'attack_vector': ['Phishing Emails'],
'description': 'Thousands of Inland Revenue files became the target of a '
'crypto locking attack. It received phishing emails targeting '
'customers. The department also received phishing emails '
'attempting to obtain money, information or to compromise the '
'Inland Revenue environment.',
'initial_access_broker': {'entry_point': 'Phishing Emails'},
'motivation': ['Financial Gain', 'Data Theft'],
'title': 'Crypto Locking Attack on Inland Revenue',
'type': 'Crypto Locking Attack, Phishing'}