Security News > 2023 > September > US-Canada water org confirms 'cybersecurity incident' after ransomware crew threatens leak

The International Joint Commission, a body that manages water rights along the US-Canada border, has confirmed its IT security was targeted, after a ransomware gang claimed it stole 80GB of data from the organization.

"The International Joint Commission has experienced a cybersecurity incident, and we are working with relevant organizations to investigate and resolve the situation," a spokesperson for the org told The Register.

IJC is a cross-border water commission tasked with approving projects that affect water levels of the hundreds of lakes and rivers along the US-Canada border.

On September 7, the NoEscape ransomware crew listed IJC as a victim on its dark-web site, and claimed it breached the commission's network, and then stole and encrypted a flood of confidential data.

"If management continues to remain silent and does not take the step to negotiate with us, all data will be published," the NoEscape leak notice threatened.

The IJC spokesperson contacted by The Register declined to comment on the ransom demand or if the commission would pay.

News URL

https://go.theregister.com/feed/www.theregister.com/2023/09/15/ijc_noescape_ransomware/