lockbit2 attacks Central Bank
Incident Date:
January 16, 2022
Overview
Title
lockbit2 attacks Central Bank
Victim
Central Bank
Attacker
Lockbit2
Location
First Reported
January 16, 2022
Central Bank Faces Ransomware Attack
Overview of the Incident
Central Bank, a community bank located in Tampa, Florida, has recently fallen victim to a ransomware attack orchestrated by the group known as Lockbit2. Established in 2007, Central Bank has been an active participant in the finance sector, offering a wide array of services such as personal, commercial, and residential banking. Despite the bank's expansion, which now includes premium locations in Winter Park and St. Augustine, and its provision of tools for personal finance management along with access to Bank of America's nationwide ATM network, the bank has not yet disclosed the full extent of the damage inflicted by the ransomware attack.
Analysis of Vulnerability
The susceptibility of Central Bank to ransomware attacks can be partly attributed to its reliance on third-party cloud providers. This vulnerability was highlighted by a recent attack on a data center operated by Tietoevry, which resulted in significant outages affecting both government institutions and private companies. Such incidents underscore the inherent risks associated with outsourcing IT infrastructure, especially for financial institutions like Central Bank that manage substantial assets and report annual revenues in the vicinity of $600 million.
Implications for the Finance Sector
Central Bank's experience serves as a stark reminder of the critical importance of cybersecurity within the financial sector. The bank's reliance on third-party providers for essential infrastructure, a common practice among financial institutions, poses significant risks that can lead to operational disruptions and potential data breaches. In response to the attack, Central Bank has reassured its customers that it has not experienced any financial losses or other detrimental effects. However, this incident highlights the ongoing need for banks and similar entities to invest heavily in cybersecurity measures to safeguard their systems and customer data against future cyber threats.
Sources
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.