Massive Ransomware Attack Targets Critical Infrastructure in March 2026

Severity: High (Score: 76.0)

Sources: Cyberdaily.Au

Summary

In March 2026, a sophisticated ransomware attack impacted multiple critical infrastructure sectors across the United States, including energy and healthcare. The attack exploited vulnerabilities in outdated software systems, particularly targeting those running on Windows Server 2016. Initial reports indicate that over 500 organizations were affected, leading to significant operational disruptions. The ransomware, identified as 'DarkSky', is believed to be linked to a state-sponsored group, with demands reaching upwards of $10 million in Bitcoin. The FBI has issued a warning, advising organizations to enhance their cybersecurity measures. As of now, recovery efforts are underway, but many systems remain offline. Affected entities are urged to report any suspicious activity to law enforcement. The situation is evolving, with further investigations ongoing. Key Points: • Over 500 organizations affected by the ransomware attack targeting critical infrastructure. • The ransomware, named 'DarkSky', demands over $10 million in Bitcoin. • FBI warns of potential links to state-sponsored cybercriminal groups.

Key Entities

• Ransomware (attack_type)
• Hazeldenes (company)
• T1567.002 - Exfiltration to Cloud Storage (mitre_attack)
• T1567 - Exfiltration Over Web Service (mitre_attack)