Massive Ransomware Attack Targets Critical Infrastructure in the U.S.
Severity: Critical (Score: 81.6)
Sources: News9Live, Msn
Summary
In March 2026, a sophisticated ransomware attack struck multiple critical infrastructure sectors across the United States, affecting over 1,000 organizations. The attackers exploited a zero-day vulnerability in a widely used software, identified as CVE-2026-0456, which allowed them to gain unauthorized access to sensitive systems. The ransomware, known as 'DarkCrypt', encrypts files and demands a ransom in cryptocurrency. Key sectors impacted include energy, healthcare, and transportation, leading to widespread service disruptions. The FBI has attributed the attack to a state-sponsored group linked to a foreign nation. Emergency response teams are working to mitigate the damage and restore services. As of now, the attack is ongoing, and organizations are urged to implement immediate security measures. A patch for the vulnerability is expected to be released shortly, but many systems remain unprotected. Key Points: • Over 1,000 organizations impacted by a ransomware attack exploiting CVE-2026-0456. • Ransomware 'DarkCrypt' demands payment in cryptocurrency for file decryption. • FBI attributes the attack to a state-sponsored group, indicating geopolitical implications.