
The Central Food Bank of Pennsylvania has fallen victim to the Fog ransomware group, which claims to have stolen more than 20 GB of data, including personal information such as social security numbers and customer agreements.
On October 16, 2024, the Central Food Bank of Pennsylvania, which helps more than 250,000 people in need every month, was attacked by the Fog ransomware group. Cybercriminals posted the bank’s data on their dark blog, claiming to have stolen more than 20GB of files. Among the stolen information are customer contracts, accounting records and personal information, including social security numbers, passports and driver’s licenses. Despite this, the charity continues to work, but cyber security experts warn of serious risks.
Fog ransomware is a relatively new variant of the virus that was discovered in May 2024. This group is known for attacking educational and non-profit institutions, including using compromised VPNs and privileged accounts to infiltrate networks. The group is believed to specialize in double extortion: first encrypting victims’ files, then demanding a ransom for decrypting the data and not sharing the stolen information.
With the increase in attacks using Fog ransomware, organizations, especially in the non-profit sector, should strengthen their cybersecurity measures and improve data protection.