Cyberattacks against NC SBI network under investigation
An attack on the internet in May targeted a vendor-managed computer that is part of the North Carolina State Bureau of Investigation The agency confirms.
By Chelsea Donovan, Keith Baker, Ryan Bisesi
Jul 19, 2024 10:33 PM
The North Carolina State Bureau of Investigation is investigating a cyberattack on a vendor-managed system from May.
On the 13th of May, an NC SBI agency network received an email containing details of how their network was attacked. The email came a few weeks following the SBI received a warning that their agency’s network was in danger.
Angie Grube with the SBI has issued an update for WRAL News, noting no personal data was compromised in the incident.
“In May, a cyberattack encrypted data on a server,” the statement stated. “The incident affected a vendor-managed system. Immediately, measures were taken to repair the system. Upon detecting unusual activity, our cybersecurity team initiated protocols to mitigate the threat and secure the affected system. Fortunately, the breach did not affect other systems managed by the SBI, ensuring the security of our operations. It’s also important to note that no Personally Identifiable Information (PII) was accessed during the breach.”
“Our principal concern is the privacy and security of sensitive information in our care. We are constantly implementing additional security measures to avoid these incidents from happening in the future, and we’re determined to ensure the security and security of the systems we use.”
In July WRAL News reported a Raleigh man has filed a lawsuit against Advance Auto Parts after the company disclosed a data breach in 2024. It was among five major cyberattacks of 2024 that impacted those in our area as well as AT&T declaring an attack on that occurred on the 12th of July.
Ticketsmaster, CDK and the Town of Apex were affected recently as well as the Town of Apex.
The former FBI agents and cybersecurity expert Darren Mott talked with WRAL News about what the breach really is and why people should be concerned.
“My guess is they had a supply chain issue,” Mott explained. “All of the software and hardware that makes your network work something they had within their supply chain had a problem.”
“At this point is if they have information that the SBI has for them on cases, they maintain the concern would be was their personal data taken?”
Mott stated that police agencies are the most sought-after targets since many departments are not equipped to safeguard their networks effectively. The SBI stated that no other systems were hacked.