Ransomware Attack on The Pennsylvania Convention Center: Impact and Implications
Incident Date:
April 19, 2024
Overview
Title
Ransomware Attack on The Pennsylvania Convention Center: Impact and Implications
Victim
The Pennsylvania Convention Center
Attacker
Play
Location
First Reported
April 19, 2024
Ransomware Attack on The Pennsylvania Convention Center by Play Group
Attack Overview
A prominent facility in Philadelphia's hospitality sector, The Pennsylvania Convention Center, was recently targeted in a ransomware attack by the cybercriminal group known as Play. This attack compromised the center's operational website, affecting various types of sensitive data including employee and client information, financial records, and contractual documents.
Company Profile
The Pennsylvania Convention Center, managed by ASM Global, is a key venue in Philadelphia offering over 1 million square feet of event space. It is operated by the Pennsylvania Convention Center Authority, a public entity, and employs between 201-500 individuals. The center is integral to the local economy, primarily generating revenue through event bookings and facility rentals.
Vulnerabilities and Target Selection
The selection of the center by Play ransomware could be attributed to its significant role within the hospitality and events industry, coupled with potential vulnerabilities in its cybersecurity framework. As a high-profile public entity, the center handles vast amounts of sensitive data, making it an attractive target for ransomware attacks seeking substantial payouts.
Sources
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.