Major Ransomware Attack Disables Operations at Costa Rican Energy Firm

On December 1, 2024, Costa Rica's state energy company Refinadora Costarricense de Petróleo (RECOPE) faced a severe ransomware attack that disrupted critical operations across its facilities. The attack forced RECOPE to revert to manual processes, showcasing the vulnerability of essential services to cyber threats. U.S. cybersecurity experts were deployed to assist in the recovery process, emphasizing the need for international collaboration in addressing cyber incidents.

Simultaneously, the U.S. Treasury Department reported a breach attributed to a Chinese state-sponsored hacking group, exploiting vulnerabilities in remote management software to gain unauthorized access to sensitive documents. This incident raises significant concerns regarding supply chain security, particularly for government entities.

In addition to these high-profile breaches, the Cybersecurity and Infrastructure Security Agency (CISA) has identified multiple active vulnerabilities, including critical flaws in SolarWinds and Ivanti products, urging organizations to implement patches immediately. The incident at Dartmouth College, which led to the exposure of sensitive personal information due to a zero-day vulnerability, further illustrates the ongoing challenges in safeguarding data. Phishing attacks have also surged, with a reported 40% increase this year, indicating a persistent threat landscape driven by evolving cybercriminal tactics.