"Kansas City Public Transportation Authority Hit by Ransomware"

The Kansas City Area Transportation Authority (KCATA) recently announced it was targeted by a ransomware attack on Tuesday, January 23.  KCATA is a bi-state public transit agency serving seven counties of Missouri and Kansas, operating 78 bus routes and 6 MetroFlex routes using a fleet of 300 buses.  The company reports that 10.5 million people use their services in a year.  The ransomware attack impacted all its communication systems.  KCATA noted that all services are operating, including fixed-route buses and Freedom and Freedom-On-Demand paratransit services.  Logging in to ridekc.org and using the transit app to receive bus schedule information also work normally.  The agency has not elaborated on the possibility of registered members and pass holders having had their sensitive information exposed to cybercriminals.  Medusa ransomware claimed responsibility for the attack on KCATA and posted data samples allegedly belonging to the organization on their extortion portal on the dark web.  Medusa has given KCATA 10 days to negotiate a resolution, and their financial demands were set to a payment of $2,000,000.

BleepingComputer reports: "Kansas City Public Transportation Authority Hit by Ransomware"