Medusa ransomware attack hits Kansas City Regional Transit Authority
January 28, 2024
The Medusa ransomware gang claimed responsibility for the attack on the Kansas City Area Transportation Authority (KCATA).
On January 23, 2023, the Kansas City Area Transportation Authority (KCATA) was hit with a ransomware attack.
of Kansas City Regional Transportation Authority (KCATA) is the Kansas City metropolitan public transportation system. The company operates the Metro Area Express (MAX) bus rapid transit service in Kansas City, Missouri, and operates 78 local bus routes in his seven counties in Missouri and Kansas.
As of 2022, the company reports 10,572,100 annual passengers.
The company disclosed the attack on January 24th and immediately began investigating the incident and notified the relevant authorities. The company hired outside experts to restore the affected systems.
Read “In the early morning hours of Tuesday, January 23rd, a cyber attack demanding a ransom struck KCATA. We have contacted all appropriate authorities, including the FBI.” news Published by the company.
KCATA said the incident did not affect its services, including local buses and Freedom and Freedom on Demand paratransit services.
“The primary impact for customers is the inability to call the local RideKC call center, including KCATA landlines,” the notice continues. “KCATA is working around the clock with external cyber experts and intends to have our systems back up and running as soon as possible.”
KCATA did not release specific information about the attack, including details about the ransomware family that compromised its systems or whether a data breach occurred.
Meanwhile, the Medusa ransomware group claimed responsibility for the attack on KCATA.
The ransomware gang added the company to the Tor leak site and published samples of the allegedly stolen data as evidence of the data breach.
The ransomware gang is threatening to release all stolen data unless the company pays a $2 million ransom.medusa group
Victims also have the option to extend the deadline by paying $100,000 per day.Follow us on Twitter: @securityaffairs and Facebook and mastodon
(Security related matters – Kansas City Regional Transit Authority Ransomware)