avoslocker attacks Bluefield University

Date:

May 2, 2023

World map

Overview

Title

avoslocker attacks Bluefield University

Victim

Bluefield University

Attacker

avoslocker

Location

Bluefield, USA

Bluefield, Virginia

Size of Attack

Unknown/TBD

First Reported

May 2, 2023

Last Updated

October 31, 2022

The AvosLocker ransomware gang has claimed responsibility for an attack that has crippled internet and other services at Bluefield University. The attackers also appear to be in control of the university's “RamAlert” emergency notification system, blasting messages to the impacted students and staff that imply they have exfiltrated sensitive data.

Messages state the attackers have “hacked the university network to exfiltrate 1.2 terabytes of files,” and that they “will continue attacking if BU’s president does not pay,” but did not say how much they are demanding for ransom.

The FBI issued an alert about AvosLocker activity back in March 2022 indicating that the group has “targeted victims across multiple critical infrastructure sectors in the U.S. Including...The financial services, critical manufacturing, and government facilities sectors.”

“As you know, on Sunday, April 30, 2023, Bluefield University discovered a cybersecurity attack that impacted our systems. Upon learning of this issue, we immediately engaged independent third-party cybersecurity experts to assist in our review and remediation efforts, but it may be a few days before full functionality can be restored,” a statement from BU school officials said.  

“We are working through the investigation to determine the nature and extent of the incident. However, as of now, we have no evidence indicating any information involved has been used for financial fraud or identity theft.”

We talked to two students over the phone who wanted to remain anonymous. While they expressed concerns about their personal information being leaked, they were also optimistic about the university’s response.

Updates: (descending from most recent)

The attackers also appear to be in control of the university's “RamAlert” emergency notification system, blasting messages to the impacted students and staff...

Oh no!

This attack's description was not found, while we work on the detailed account of this attack we invite you to browse through other recent Rasomware Attacks in the table below.

Attack reported by

Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.

unknown attacks Point32Health
Date
May 25, 2023
Ransomware group
Unknown
Location

Boston, USA

Massachusetts, USA

Industry
Finance & Insurance
Victim
Point32Health
unknown attacks Point32Health
Date
May 25, 2023
Ransomware group
Unknown
Location

Boston, USA

Massachusetts, USA

Industry
Finance & Insurance
Victim
Point32Health
alphv attacks Orion Co. Ltd
Date
May 18, 2023
Ransomware group
alphv
Location

Seoul, South Korea

, South Korea

Industry
Accommodations & Food Services
Victim
Orion Co. Ltd.
alphv attacks Orion Co. Ltd
Date
May 18, 2023
Ransomware group
alphv
Location

Seoul, South Korea

, South Korea

Industry
Accommodations & Food Services
Victim
Orion Co. Ltd.
unknown attacks KD Hospital
Date
May 17, 2023
Ransomware group
Unknown
Location

Ahmedabad, India

, India

Industry
Healthcare
Victim
KD Hospital
unknown attacks KD Hospital
Date
May 17, 2023
Ransomware group
Unknown
Location

Ahmedabad, India

, India

Industry
Healthcare
Victim
KD Hospital
unknown attacks ScanSource
Date
May 16, 2023
Ransomware group
Unknown
Location

Greenville, USA

South Carolina, USA

Industry
Information & Technology
Victim
ScanSource
unknown attacks ScanSource
Date
May 16, 2023
Ransomware group
Unknown
Location

Greenville, USA

South Carolina, USA

Industry
Information & Technology
Victim
ScanSource
royal attacks Curry County
Date
May 16, 2023
Ransomware group
royal
Location

Gold Beach, USA

Oregon, USA

Industry
State & Local Government
Victim
Curry County
royal attacks Curry County
Date
May 16, 2023
Ransomware group
royal
Location

Gold Beach, USA

Oregon, USA

Industry
State & Local Government
Victim
Curry County
unknown attacks Philadelphia Inquirer
Date
May 15, 2023
Ransomware group
Unknown
Location

Philadelphia, USA

Pennsylvania, USA

Industry
Information & Technology
Victim
unknown attacks Philadelphia Inquirer
Date
May 15, 2023
Ransomware group
Unknown
Location

Philadelphia, USA

Pennsylvania, USA

Industry
Information & Technology
Victim
money message attacks Pharmerica
Date
May 15, 2023
Ransomware group
money message
Location

Louisville, USA

Kentucky, USA

Industry
Manufacturing
Victim
Pharmerica
money message attacks Pharmerica
Date
May 15, 2023
Ransomware group
money message
Location

Louisville, USA

Kentucky, USA

Industry
Manufacturing
Victim
Pharmerica
blackbasta attacks Capita
Date
May 15, 2023
Ransomware group
blackbasta
Location

London, United Kingdom

, United Kingdom

Industry
Finance & Insurance
Victim
Capita
blackbasta attacks Capita
Date
May 15, 2023
Ransomware group
blackbasta
Location

London, United Kingdom

, United Kingdom

Industry
Finance & Insurance
Victim
Capita
unknown attacks Lacroix Group
Date
May 15, 2023
Ransomware group
Unknown
Location

Bourrelier, France

, France

Industry
Manufacturing
Victim
Lacroix
unknown attacks Lacroix Group
Date
May 15, 2023
Ransomware group
Unknown
Location

Bourrelier, France

, France

Industry
Manufacturing
Victim
Lacroix
blackbasta attacks ABB
Date
May 11, 2023
Ransomware group
blackbasta
Location

Zurich, Switzerland

, Switzerland

Industry
Information & Technology
Victim
ABB
blackbasta attacks ABB
Date
May 11, 2023
Ransomware group
blackbasta
Location

Zurich, Switzerland

, Switzerland

Industry
Information & Technology
Victim
ABB