LockBit ransomware group has claimed to publish the database of The Housing Authority of the City of Los Angeles (HACLA) on its dark web portal. While the HACLA cyber attack is yet to be confirmed, the official website remains inaccessible.
A post on the dark web portal states that the “Files Are Published,” with data of upload and date of published data being March 31, 2023.
At the time of writing, the official website of The Housing Authority of the City of Los Angeles (HACLA) was inaccessible and showed a “403 Forbidden” error.
In traditional cyber attacks, a “403 Forbidden” error can occur when an attacker attempts to access a web resource that has been restricted or blocked by the server or website administrator.
With certain tricks up their sleeves, hackers can intentionally trigger a 403 Forbidden error by submitting invalid or incorrect credentials or by attempting to exploit vulnerabilities in the server or website software.
HACLA cyber attack explained
— FalconFeedsio (@FalconFeedsio) March 31, 2023
The Housing Authority of the City of Los Angeles is a government agency responsible for providing affordable housing to low-income families, seniors, and people with disabilities in the city of Los Angeles.
The LockBit ransomware group, notorious for carrying out ransomware attacks and extorting money from victims, listed the organization on its leak site on December 31, 2022.
According to the group, they have gained access to over 15TB of files from the organization’s database, including confidential information such as social security numbers, addresses, and financial data of HACLA’s tenants.
The group claims to have published the stolen data on their dark web portal, making it available for anyone with the technical know-how to access.
HACLA cyber attack and the need for better security practices
This is not the first time a ransomware group has targeted a government agency, but it highlights the need for organizations to be proactive in their cybersecurity measures. The consequences of such an attack can devastate the organization and the individuals whose sensitive information has been compromised.
The Housing Authority of the City of Los Angeles has not yet commented on the matter. It is unclear whether LockBit has leaked the data or whether the data posted on the dark web belongs to HACLA.
However, this incident serves as a reminder of the importance of implementing strong cybersecurity protocols, including regular data backups, employee education on cybersecurity best practices, and the use of multi-factor authentication.
The recent breach of the Housing Authority of the City of Los Angeles (HACLA) database by the LockBit ransomware group highlights the urgent need for organizations to prioritize their cybersecurity efforts.
In today’s digital age, safeguarding sensitive data and critical infrastructure from the constantly-evolving tactics of cybercriminals is a crucial responsibility for every organization.