Major Ransomware Attack Hits Housing Authority of Los Angeles

On November 21, 2024, the Housing Authority of the City of Los Angeles (HACLA) became the latest victim of a significant ransomware attack orchestrated by the Cactus ransomware group. This breach resulted in the theft of 861 GB of sensitive data, causing major operational disruptions. The Cactus group has established a reputation for targeting critical infrastructure and public sector entities, further emphasizing the vulnerabilities that exist within these organizations. This incident follows a troubling trend of increasing ransomware attacks in November, highlighting the need for robust cybersecurity measures and incident response plans.

In parallel, the Cybersecurity and Infrastructure Security Agency (CISA) has flagged multiple critical vulnerabilities, including CVE-2025-26399 and CVE-2026-1603, which are actively exploited in software systems such as SolarWinds and Ivanti. Organizations must prioritize patching these vulnerabilities to mitigate potential exploitation.

Furthermore, state-sponsored cyber activities are on the rise, with groups like Salt Typhoon targeting telecom companies to gain access to sensitive communication records, posing risks to national security. Experts recommend that organizations enhance their cybersecurity protocols, including staff training and thorough incident response planning, to counter these advanced threats effectively.