What is the issue - Attackers infected the Stuart city servers and computers with the Ryuk ransomware forcing the city to shut down its servers.
On April 13, 2019, attackers targeted the city of Stuart with a ransomware attack, infecting the city’s servers and forcing them offline. Upon learning the incident, the city conducted investigations and found out that the ransomware is Ryuk.
Dyess said that a brute-force attack is not the primary attack vector but phishing email scam.
“If it was on one of the servers where they got what’s called a remote desktop protocol … I would say it was brute-force, but it’s not. It’s on a regular desktop computer that doesn’t have outside connectivity. So, more than likely it’s going to be a phishing email-type scam, where it’s like ‘click on this email,” Dyess said, TCPalm reported.