Montreal’s STM public transport system is the latest victim of a ransomware attack that has affected its services and online systems.
In a statement on Twitter, STM said: “According to our initial analysis, the data of our customers and employees has not been affected. As soon as we became aware of the situation, we did everything to protect them. Our investigations are not yet complete, and we are continuing our analysis.”
Tim Helming, Security Advocate at DomainTools, said: “Unfortunately for Montreal’s STM public transport system, RansomExx ransomware actors are amongst the threat groups that have upgraded their attacks to both encrypt and steal victims’ data. This evolution of ransomware attacks is known as ‘double-extortion’ because criminals are effectively able to ask for a double payment – one to decrypt the files and the other to stop the stolen data from being made public.”