An organization answerable for working privately-run prisons, in addition to detention facilities for illegal immigrants, has suffered a ransomware attack. The GEO Group, which operates safe services throughout the US and internationally, confirmed that delicate data regarding inmates and residents was uncovered through the incident.
Specifically, the ransomware attack concerned personally identifiable data and well being information regarding the South Bay Correctional and Rehabilitation Facility in Florida, a youth facility in Marienville, Pennsylvania and one other facility in California that’s now closed.
Employee information saved on two company servers was additionally compromised through the incident, which passed off again in August.
“Upon discovery on August 19, 2020, GEO promptly launched an investigation, engaged industry-leading cybersecurity firms to respond to the incident, and notified its customers and law enforcement,” an organization press launch acknowledged.
“GEO implemented several containment and remediation measures to address the incident, restore its systems and reinforce the security of its networks and information technology systems. The company recovered its critical operating data and, based on its assessment and on the information currently known and obtained through the investigation, the company does not believe the incident will have a material impact on its business, operations or financial results.”
Currently, it isn’t clear whether or not GEO managed to revive the compromised information by utilizing backup options or if the ransom was paid to the cyberattackers. GEO did state that it’s unaware of any misuse of data stemming from the incident.
Although the ransomware attack solely affected a small proportion of GEO’s safety services, the corporate is sending information breach notification letters to all affected people. Although the breach is unlikely to trigger long-term monetary injury to GEO, shares within the firm did fall within the speedy aftermath of the disclosure.