The Ruđer Bošković Institute in Croatia was targeted by a ransomware attack exploiting Microsoft SharePoint ToolShell vulnerabilities, affecting thousands of institutions worldwide. The Institute is responding with data restoration, a new cybersecurity framework, and ongoing forensic analysis. #ToolShell #Warlock #CroatianCybersecurity #RBI
Keypoints
- The attack exploited SharePoint ToolShell vulnerabilities to deploy ransomware.
- The ransomware affected the Institute’s administrative and professional data.
- The Institute refused to pay the ransom and is restoring data from backups.
- An ongoing forensic investigation is being conducted with Croatian cybersecurity agencies.
- The Institute is constructing a new IT infrastructure compliant with cybersecurity standards.