Were you hurt by the Cyberattack on Records Vendor?

Written By Peter Vogel

HeathCareInfoSecurity.com reported that “Hundreds of U.S. counties continue to work with pen and paper after a cyberattack on their digital records management vendor last week disrupted methods to view, add and edit government records.”  The January 4, 2023 report entitled “Cyberattack on Records Vendor Affects Scores of US Counties” (https://tinyurl.com/39ucf739) included these comments:

 The third-party vendor, Cott Systems, a cloud-based solutions provider, informed its customers that an "organized cyberattack" had hit the company systems and resulted in "unusual activity" on its servers on Dec. 26. The company responded by unplugging its servers to isolate the intrusion, Cott said in a notification shared with New York's Rockland County.

Cott Systems helps manage government data including public records, land records and court cases. The company serves over 400 local governments across 21 states and has long-standing associations with several national and international bodies, according to its website.

The server suspension forced hundreds of local governments to resort to manual processes, slowing down the processing of birth certificates, marriage licenses and real estate transactions.

The company notified the FBI and the Department of Homeland Security of the incident but says there is no "absolute" timeline for service resumption of its entire product line, which includes five systems used by local clerks and recorders to manage public and land records, property deeds and court cases.

The company did not reveal details of the threat actor responsible for the attack but said "both the FBI and DHS have indicated that they are aware of and have been investigating this particular group of criminals who operate worldwide." Cott did not respond to Information Security Media Group's request for additional details on the threat group or its indicators of compromise but said more information will be shared as the investigation proceeds.

No surprises, but disturbing nonetheless!

Peter Vogel
Previous

PREINSTALLED MALWARE comes standard with IoT for Android TV Box!
Next

Medical Device Cybersecurity Requirements are now LAW!