Cleveland - Ohio, CMHA: Doppel Paymer ransomware publishes first stolen data
The Doppel Paymer ransomware group publishes the first data stolen from the Cuyahoga Metropolitan Housing Authority (CMHA) during the February 10th cyber attack.
Founded in 1933, CMHA is a government organization responsible for real estate, managing low-income housing groups in Cuyahoga County, Ohio. In 2019, it reported annual sales of nearly $ 240 million.
On February 10, the Cuyahoga Metropolitan Housing Authority was one of the latest victims of a cyber attack by Doppel Paymer. The group of cybercriminals wasted no time and yesterday uploaded the first exfiltrated documents to their site in the Tor network.
At the moment in the 2.3 MB of data published by Doppel Paymer there are three PDF files, a first document is an extract from a corporate bank account with a reference period ranging from 1 January 2021 to 29 January 2021, the account is was opened at the PNC Bank holding company headquartered in Pittsburgh, Pennsylvania.
Cleveland - Ohio, CMHA: Doppel Paymer ransomware publishes first stolen data 1
A second document refers to a renewal of a Microsoft product license dated July 28, 2020, the latest PDF is a document that includes the first and last names, dates of birth, gender, addresses of five people hired at the end of 2019. Among the files uploaded to their site by Doppel Paymer and available for download there are also two Excel files and a Word file.
Cleveland - Ohio, CMHA: Doppel Paymer ransomware publishes first 2 stolen data
Cleveland - Ohio, CMHA: Doppel Paymer ransomware publishes first 3 stolen data
We do not currently know the conditions set by cybercriminals regarding the payment of the ransom, nor the amount requested.
Jeffrey Wade , chief of staff and special adviser to the CEO, told News 5 Cleveland television station
"… The agency's website went down for eight days, along with computer access for many of its 700 employees, after a" third party actor "compromised its computer systems."
Wade added that the CMHA web page was restored on February 18 and that a small group of employees had access to the computers again.
The chief of staff of the Cuyahoga Metropolitan Housing Authority also said
"... the personal information of over 20,000 residents does not appear to have been compromised ..."
This is the press release published on their Twitter and Facebook accounts
Cleveland - Ohio, CMHA: Doppel Paymer ransomware publishes first stolen data 4
I wrote an e-mail to the Chief of Staff / Special Counsel to the CEO, the Executive Assistant to the Chief of Staf and the Director of Information Technology asking for a statement on the matter , at the time of publication of the article SuspectFile did not receive answers .
This article will be updated when we have new details on the data breach.
Founded in 1933, CMHA is a government organization responsible for real estate, managing low-income housing groups in Cuyahoga County, Ohio. In 2019, it reported annual sales of nearly $ 240 million.
On February 10, the Cuyahoga Metropolitan Housing Authority was one of the latest victims of a cyber attack by Doppel Paymer. The group of cybercriminals wasted no time and yesterday uploaded the first exfiltrated documents to their site in the Tor network.
At the moment in the 2.3 MB of data published by Doppel Paymer there are three PDF files, a first document is an extract from a corporate bank account with a reference period ranging from 1 January 2021 to 29 January 2021, the account is was opened at the PNC Bank holding company headquartered in Pittsburgh, Pennsylvania.
Cleveland - Ohio, CMHA: Doppel Paymer ransomware publishes first stolen data 1
A second document refers to a renewal of a Microsoft product license dated July 28, 2020, the latest PDF is a document that includes the first and last names, dates of birth, gender, addresses of five people hired at the end of 2019. Among the files uploaded to their site by Doppel Paymer and available for download there are also two Excel files and a Word file.
Cleveland - Ohio, CMHA: Doppel Paymer ransomware publishes first 2 stolen data
Cleveland - Ohio, CMHA: Doppel Paymer ransomware publishes first 3 stolen data
We do not currently know the conditions set by cybercriminals regarding the payment of the ransom, nor the amount requested.
Jeffrey Wade , chief of staff and special adviser to the CEO, told News 5 Cleveland television station
"… The agency's website went down for eight days, along with computer access for many of its 700 employees, after a" third party actor "compromised its computer systems."
Wade added that the CMHA web page was restored on February 18 and that a small group of employees had access to the computers again.
The chief of staff of the Cuyahoga Metropolitan Housing Authority also said
"... the personal information of over 20,000 residents does not appear to have been compromised ..."
This is the press release published on their Twitter and Facebook accounts
Cleveland - Ohio, CMHA: Doppel Paymer ransomware publishes first stolen data 4
I wrote an e-mail to the Chief of Staff / Special Counsel to the CEO, the Executive Assistant to the Chief of Staf and the Director of Information Technology asking for a statement on the matter , at the time of publication of the article SuspectFile did not receive answers .
This article will be updated when we have new details on the data breach.
