Security Affairs
FBI: TeamPCP Compromised Dev Tools to Steal Cloud Credentials|Pegasus Used Against MEP Investigating Pegasus, Citizen Lab Finds|JADEPUFFER: First End-to-End AI-Driven Ransomware Operation|The Anatomy of a Shadow AI Supply-Chain Breach: Lessons from the 2026 Vercel Incident|Law enforcememt operation disrupted Malicious Residential Proxy Networks NetNut|Government and Healthcare Are the Weakest Links in Global Email Security|Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|FBI: TeamPCP Compromised Dev Tools to Steal Cloud Credentials|Pegasus Used Against MEP Investigating Pegasus, Citizen Lab Finds|JADEPUFFER: First End-to-End AI-Driven Ransomware Operation|The Anatomy of a Shadow AI Supply-Chain Breach: Lessons from the 2026 Vercel Incident|Law enforcememt operation disrupted Malicious Residential Proxy Networks NetNut|Government and Healthcare Are the Weakest Links in Global Email Security|Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|
Advertisement

Ad Placeholder

Full Width × 90

Breaking News

The Toronto Transit Commission (TTC) hit by a ransomware attack

A ransomware attack hit the systems at the Toronto Transit Commission public transportation agency and disrupted its operations. The Toronto Transit Commission announced on Friday that its systems have been infected with ransomware, the attack began on Thursday night and disrupted its activities. At this time, no ransomware gang has taken responsibility for the attack. TTC […]

Reynolds ransomware uses BYOVD to disable security before encryption ransomware

A ransomware attack hit the systems at the Toronto Transit Commission public transportation agency and disrupted its operations.

The Toronto Transit Commission announced on Friday that its systems have been infected with ransomware, the attack began on Thursday night and disrupted its activities. At this time, no ransomware gang has taken responsibility for the attack.

TTC spokesman, Stuart Green, initially declared that the attack had no significant impact on the transit service, but things have gotten worse since Friday.

“Impact was minimal until midday today (Friday) when hackers broadened their strike on network servers,” reads a press release published by the agency.

The security breach impacted the agency’s internal email server, the Wheel-Trans bookings, the vehicle information on platform screens, apps, and the TTC Vision communication system, along with other internal systems.

The drivers were forced to communicate using a classic radio-based communication system.

The TTC also announced to have canceled a Saturday subway closure on Line 1 between St. Clair and College stations which was going to be used to complete track work.

“The full extent of the attack is being looked into and the TTC is working with law enforcement and cybersecurity experts on this matter. The City of Toronto’s IT Services department has also been consulted.” continues the statement.

The public transportation routes were not impacted by the incident. TTC reported the incident to the authorities and an investigation is still ongoing.

This isn’t the first ransomware attack that hit the public transportation systems in Canada. In October 2020, an attack hit Montreal’s STM, and two months later another attack hit Metro Vancouver’s transportation agency TransLink.

Follow me on Twitter: @securityaffairs and Facebook

[adrotate banner=”9″][adrotate banner=”12″]

Pierluigi Paganini

(SecurityAffairs – hacking, ransomware)

[adrotate banner=”5″]

[adrotate banner=”13″]