Wayne County, Michigan

Wayne County, Michigan

Wayne County, Michigan, was one of the notable victims of the Interlock ransomware attack. The ransomware, known for its double-extortion tactic, exfiltrated sensitive company files before encrypting the systems. The attack, which used the FileFix technique to deploy malware, resulted in significant data leaks and disruption to the organization's operations. This attack highlights the evolving threat landscape and the need for robust cybersecurity measures.

Source: https://www.techradar.com/pro/security/hackers-are-abusing-filefix-technique-to-drop-rats-during-ransomware-attacks

TPRM report: https://scoringcyber.rankiteo.com/company/wayne-county

"id": "way809071625",
"linkid": "wayne-county",
"type": "Ransomware",
"date": "7/2025",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"
{'affected_entities': [{'industry': 'Public Administration',
                        'location': 'Michigan, USA',
                        'name': 'Wayne County, Michigan',
                        'type': 'Government'},
                       {'industry': 'Healthcare',
                        'location': 'Texas, USA',
                        'name': 'Texas Tech University Health Sciences Center',
                        'type': 'Education'},
                       {'industry': 'Banking',
                        'name': 'Heritage Bank & McCormick–Priore',
                        'type': 'Financial Services'},
                       {'industry': 'Healthcare',
                        'name': 'Kettering Health',
                        'type': 'Healthcare'}],
 'attack_vector': 'Phishing, Social Engineering',
 'data_breach': {'data_encryption': 'Yes', 'data_exfiltration': 'Yes'},
 'date_detected': '2024-09-01',
 'date_publicly_disclosed': '2024-11-01',
 'description': 'A new variant of the ClickFix malware deployment technique, '
                'dubbed ‘FileFix’, is being used in ransomware attacks. This '
                'technique tricks users into pasting commands into File '
                "Explorer's address bar, leading to the deployment of "
                'Interlock ransomware encryptors.',
 'initial_access_broker': {'entry_point': 'File Explorer address bar'},
 'motivation': 'Financial gain, Data theft',
 'ransomware': {'data_encryption': 'Yes',
                'data_exfiltration': 'Yes',
                'ransomware_strain': 'Interlock'},
 'references': [{'source': 'TechRadar Pro'}, {'source': 'BleepingComputer'}],
 'title': 'Interlock Ransomware Attack via FileFix Technique',
 'type': 'Ransomware'}
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.