Albemarle County Investigates Ransomware Attack; UVA Updates Leadership

Alan V Gutnov
Alan V Gutnov

Director of Strategy

 
July 16, 2025 2 min read

Albemarle County, Va., IDs Group Behind Ransomware Attack

Albemarle County authorities have identified the extortion operation behind the June cyberattack that disrupted internet access in county offices and may have compromised government employee and resident data. The group responsible, known as INC Ransom, is believed to have links to Russia and has conducted over 230 attacks since July 2023, targeting various sectors including hospitals and schools.

The county's spokeswoman, Abbey Stumpf, stated, “The ransom was not paid to the cybercriminals,” confirming that personal data of residents and employees was likely accessed. This data may include names, dates of birth, Social Security numbers, and other identifiers. County officials noted that the breach was confined to local servers, with no cloud-based data compromised.

The county has initiated a thorough investigation and is providing free credit monitoring services through Kroll, a financial advisory firm, for the next 12 months. Stumpf indicated that the county is committed to enhancing its cybersecurity measures in response to the incident. More information can be found at albemarle.org/cybersecurityincident.

UVA Outlines Next Steps for Selecting Interim President

The University of Virginia is in the process of selecting an interim president following the resignation of former President Jim Ryan. The selection will involve listening sessions with various stakeholders, including faculty, staff, and students, to gather input on the desired qualities of an interim president.

The nomination form for candidates is available on a dedicated website until July 25 at 5 p.m. Acting President Jennifer “J.J.” Wagner Davis is currently overseeing the university during this transitional period. The Board of Visitors aims to uphold shared governance as they prepare for a national search for the university's next permanent president.

A portrait of the Rotunda from a side angle.

New Virginia Law on Health Information Consent

A new Virginia law has been enacted to protect individuals' reproductive and sexual health information from unauthorized access or disclosure. The law requires consent before such sensitive information can be obtained, shared, or sold.

This legislative change has prompted updates to various platforms, including a new 'Health Information Consent' pop-up on the Walmart website. The law reflects a growing emphasis on the privacy of personal health data and aims to enhance consumer protection in the digital age.

New Virginia law prompts 'Health Information Consent' pop-up on Walmart website

Moscow On Trump, Supreme Court On Education Department, Epstein Files

Recent developments include President Trump's threats of heavy tariffs against Russia if a ceasefire in Ukraine is not achieved by September. Furthermore, the Supreme Court has ruled that the Trump administration can continue dismantling the Education Department amidst backlash from some supporters regarding the management of the Epstein files.

The ongoing geopolitical tensions and domestic policy shifts are shaping the current political landscape, underscoring the importance of following these issues closely for their broader implications.

Up First from NPR

Alan V Gutnov
Alan V Gutnov

Director of Strategy

 

MBA-credentialed cybersecurity expert specializing in Post-Quantum Cybersecurity solutions with proven capability to reduce attack surfaces by 90%.

Related Articles

Ransomware Attacks Target Russian Vodka and Healthcare Sectors

The Novabev Group, parent company of the Beluga vodka brand, experienced a ransomware attack on July 14, 2025, causing significant disruptions. The attack affected WineLab, the company's liquor store chain, leading to a three-day closure of over 2,000 locations in Russia. The company reported that the attack crippled its IT infrastructure, particularly point-of-sale systems and online services. Novabev Group stated, "The company maintains a principled position of rejecting any interaction with cybercriminals and refuses to fulfill their demands."

By Alan V Gutnov July 19, 2025 3 min read
Read full article

Retail Sector Faces Surge in Ransomware Attacks: A 2025 Analysis

Publicly disclosed ransomware attacks on the retail sector globally surged by 58% in Q2 2025 compared to Q1, with UK-based firms being particularly targeted, according to a report by BlackFog. This spike in attacks follows high-profile breaches affecting retailers like Marks & Spencer (M&S), The Co-op, and Harrods, attributed to the threat actor known as Scattered Spider.

By Alan V Gutnov July 19, 2025 2 min read
Read full article

AI-Driven Lcryx Ransomware Emerges in Cryptomining Botnet

A cryptomining botnet active since 2019 has incorporated a likely AI-generated ransomware known as Lcryx into its operations. Recent analysis by the FortiCNAPP team at FortiGuard Labs identified the first documented incident linking H2miner and Lcryx ransomware. This investigation focused on a cluster of virtual private servers (VPS) utilized for mining Monero.

By Edward Zhou July 19, 2025 3 min read
Read full article

Preventing ClickFix Attacks: Safeguarding Against Human Error

ClickFix is an emerging social engineering technique utilized by threat actors to exploit human error. This technique involves misleading users into executing malicious commands under the guise of providing "quick fixes" for common computer issues. Threat actors use familiar platforms and deceptive prompts to encourage victims to paste and run harmful scripts.

By Alan V Gutnov July 19, 2025 3 min read
Read full article