• Home
  • cyber
  • Ypsilanti Community Utilities Authority
cyber Ransomware

Ypsilanti Community Utilities Authority

Nov 29, 2022 1 min read
Ypsilanti Community Utilities Authority

A ransomware infection at Ypsilanti Community Utilities Authority, serving Ypsilanti and surrounding townships exposed 2,000 Ypsilanti-area utility customers’ bank payment information to unauthorized individuals.

The hackers obtained files containing customers’ names, bank accounts, and routing numbers used for ACH payments to the water and wastewater service provider.

However, the officials quickly contained the cyber threat by disabling unauthorized access to their network and started an investigation with the assistance of outside digital forensics professionals.

The ransomware infected encrypted files stored on the network and demanded payment from YCUA to access them.

Source: https://www.mlive.com/news/ann-arbor/2022/08/ransomware-potentially-exposed-2000-ypsilanti-area-utility-customers-bank-information.html

TPRM report: https://www.rankiteo.com/company/ypsilanticommunityutilitiesauthority

"id": "yps2044121122",
"linkid": "ypsilanticommunityutilitiesauthority",
"type": "Ransomware",
"date": "04/2022",
"severity": "100",
"impact": "6",
"explanation": "Attack threatening the economy of a geographical region"
{'affected_entities': [{'customers_affected': 2000,
                        'industry': 'Utilities',
                        'location': 'Ypsilanti',
                        'name': 'Ypsilanti Community Utilities Authority',
                        'type': 'Utility Service Provider'}],
 'attack_vector': 'Unauthorized access to network',
 'data_breach': {'data_exfiltration': True,
                 'number_of_records_exposed': 2000,
                 'personally_identifiable_information': True,
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ['Bank payment information',
                                              'Customer names',
                                              'Bank accounts',
                                              'Routing numbers']},
 'description': 'A ransomware infection at Ypsilanti Community Utilities '
                'Authority, serving Ypsilanti and surrounding townships '
                'exposed 2,000 Ypsilanti-area utility customers’ bank payment '
                'information to unauthorized individuals.',
 'impact': {'data_compromised': ['Customers’ names',
                                 'Bank accounts',
                                 'Routing numbers'],
            'payment_information_risk': True},
 'investigation_status': 'In progress',
 'motivation': 'Financial gain',
 'ransomware': {'data_encryption': True,
                'data_exfiltration': True,
                'ransom_demanded': True},
 'response': {'containment_measures': 'Disabled unauthorized access to their '
                                      'network',
              'incident_response_plan_activated': True,
              'third_party_assistance': 'Digital forensics professionals'},
 'title': 'Ransomware Infection at Ypsilanti Community Utilities Authority',
 'type': 'Ransomware'}
Published by
Harshit Kaur Bhatia
Harshit Kaur Bhatia
You might also like
Cyber Attack cyber

Citrix

public 1 min read
The Dutch National Cyber Security Centre (NCSC-NL) has issued an urgent warning about sophisticated cyberattacks targeting critical infrastructure through a…
Jeremy C Jeremy C
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.