Ransomware Attack on The Pennsylvania Convention Center: Impact and Implications

Incident Date:

April 19, 2024

World map

Overview

Title

Ransomware Attack on The Pennsylvania Convention Center: Impact and Implications

Victim

The Pennsylvania Convention Center

Attacker

Play

Location

Philadelphia, USA

Pennsylvania, USA

First Reported

April 19, 2024

Ransomware Attack on The Pennsylvania Convention Center by Play Group

Attack Overview

A prominent facility in Philadelphia's hospitality sector, The Pennsylvania Convention Center, was recently targeted in a ransomware attack by the cybercriminal group known as Play. This attack compromised the center's operational website, affecting various types of sensitive data including employee and client information, financial records, and contractual documents.

Company Profile

The Pennsylvania Convention Center, managed by ASM Global, is a key venue in Philadelphia offering over 1 million square feet of event space. It is operated by the Pennsylvania Convention Center Authority, a public entity, and employs between 201-500 individuals. The center is integral to the local economy, primarily generating revenue through event bookings and facility rentals.

Vulnerabilities and Target Selection

The selection of the center by Play ransomware could be attributed to its significant role within the hospitality and events industry, coupled with potential vulnerabilities in its cybersecurity framework. As a high-profile public entity, the center handles vast amounts of sensitive data, making it an attractive target for ransomware attacks seeking substantial payouts.

Sources

Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.