hiveleak attacks Powell Transportation
Incident Date:
January 25, 2022
Overview
Title
hiveleak attacks Powell Transportation
Victim
Powell Transportation
Attacker
Hiveleak
Location
First Reported
January 25, 2022
Powell Transportation Suffers Ransomware Attack
Powell Transportation, a trucking company with over 70 trucks and terminals in Columbia and Flowood, Mississippi, has been targeted by the ransomware group HiveLeak. The company, which has been in operation for over 25 years, specializes in flatbed transportation and services the entire continental United States, with a focus on the Southeast, Southwest, and Midwest.
The attack on Powell Transportation is part of a broader trend of ransomware attacks on various sectors, including healthcare and transportation. Ransomware attacks have increased significantly in recent years, with the healthcare sector being a particularly vulnerable target. The impact of these attacks can be severe, leading to billing delays, security concerns, and disruptions in patient care.
The specific vulnerabilities that made Powell Transportation a target are not detailed in the available information. However, it is known that ransomware attacks often exploit weaknesses in Active Directory, a common target in transportation attacks. The attack on Powell Transportation may have involved the encryption of data, potentially leading to disruptions in operations and the need for recovery efforts.
As the investigation into the attack continues, it is crucial for Powell Transportation to prioritize restoring their systems and ensuring the security of their data. This may involve implementing additional security measures, such as multi-factor authentication and network segmentation, to prevent future attacks.
The ransomware group HiveLeak has claimed responsibility for the attack, but it is unclear whether the company has paid or negotiated a ransom. The incident serves as a reminder of the ongoing threat posed by ransomware attacks and the importance of robust cybersecurity measures to protect against such threats.
Sources
- Powell Transportation Website
- The Daily Record: Large Health Care Tech Company Hacked, Leading to Billing Delays and Security Concerns
- SFMTA Update on Ransomware Attack
- Semperis: AD Security and Recovery for Transportation
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.