Valley Regional Transit was targeted in a ransomware attack in which the personal information of some 535 employees, contractors, and customers was exposed.
The threat actors accessed its network and removed some data and deployed the malware.
The compromised data included name, address, date of birth, Social Security number, or driver’s license number.
TPRM report: https://www.rankiteo.com/company/valley-regional-transit
"id": "val05323422",
"linkid": "valley-regional-transit",
"type": "Ransomware",
"date": "6/2017",
"severity": "80",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"{'affected_entities': [{'customers_affected': 535,
'industry': 'Transportation',
'name': 'Valley Regional Transit',
'type': 'Public Transportation'}],
'attack_vector': 'Network Access',
'data_breach': {'data_exfiltration': True,
'number_of_records_exposed': 535,
'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Name',
'Address',
'Date of Birth',
'Social Security Number',
'Driver’s License Number']},
'description': 'Valley Regional Transit was targeted in a ransomware attack '
'in which the personal information of some 535 employees, '
'contractors, and customers was exposed. The threat actors '
'accessed its network and removed some data and deployed the '
'malware. The compromised data included name, address, date of '
'birth, Social Security number, or driver’s license number.',
'impact': {'data_compromised': 'Personal Information',
'identity_theft_risk': 'High'},
'motivation': 'Data Exfiltration and Ransom',
'ransomware': {'data_encryption': True, 'data_exfiltration': True},
'title': 'Ransomware Attack on Valley Regional Transit',
'type': 'Ransomware Attack'}