Threat Landscape Dashboard

Assessing today's threats and the relationships between them

Operation San Francisco Rail System Attack

7.55
6.00
Aliases:
  • SFMTA Attack
Description:

The ransomware attack against the rail system's computer system resulted in free rides for customers in late November 2016. The ransomware used, HDDCryptor, rewrites a computer's Master Boot Record boot sectors resulting locked PC's and a ransom note once the computer is rebooted. The threat actor behind the rail system attack demanded approximately USD $73,000 for the decryption key.

Published Date:

2017-02-24

Modified Date:

2016-12-09