Los Angeles held ransom: city crippled by cyberattack

The city of Los Angeles has been affected The incident was detected last Friday, March 20, when the attackers listed the city on their dark web leak page, indicating they had stolen 159.9 GB of information, organized into 779 files. Unlike traditional ransomware attacks, which block access to systems through encryption, WorldLeaks focuses its strategy on data exfiltration, using the threat of public disclosure as a method of extortion. This allows the group to exert pressure on affected organizations without needing to completely disable their systems. The attack led to temporarily restricting access to certain internal platforms of the Los Angeles metro. This particularly affected the train arrival monitors at stations, as well as the online recharge of TAP cards, forcing many users to use physical methods for payments and inquiries. Despite these disruptions, the transportation service continued to operate. According to the city's council, no personal data of passengers or employees has been compromised. WorldLeaks was established last year as an evolution of the group Hunters International. After pressure from Their targets are usually organizations that handle sensitive information and have the capacity to pay ransoms, such as local governments, transportation systems, and large companies.