Automatic Funds Transfer Services was targeted in a ransomware attack on the 3rd of February. The payment processor is used by many cities and agencies throughout the US. The data used for billing and verifying customers and residents is extremely varied, leading researchers to believe the attack could have had a massive and widespread impact. The cybergang responsible, known as “Cuba Ransomware”, stole unencrypted files and deployed the ransomware, causing significant disruption to AFTS’ business operations. Their website is currently unavailable and payment processing has been affected.
The cybergang began selling AFTS’ data on their data leak site, which includes “financial documents, correspondence with bank employees, account movements, balance sheets, and tax documents.”