Sinclair Confirms Ransomware Attack That Disrupted TV Stations

A major cyberattack resulted in data being stolen, too, but Sinclair’s not sure which information is now in the hands of the crooks.

Sinclair Broadcast Group, which owns hundreds of local television stations across the U.S., confirmed Monday that it has suffered a ransomware attack. The incident is disrupting its advertising operations, among other things, and spread to many of its owned TV affiliates over the weekend, knocking local broadcast feeds off the air.

The cyberattack disrupted the company’s general and office operations and resulted in data exfiltration, according to the media group’s statement to the Securities and Exchange Commission (SEC):

“On October 16, 2021, the company identified and began to investigate and take steps to contain a potential security incident. On October 17, 2021, the company identified that certain servers and workstations in its environment were encrypted with ransomware, and that certain office and operational networks were disrupted.”

Sinclair is “actively managing” the fallout from the attack, it said, after implementing its incident-response plan. “The forensic investigation remains ongoing,” it added, explaining that it’s dealing with continuing disruption, including problems with provisioning local commercials at its TV stations.

“Modern ransomware actors have learned to target

Read More: