Security incident at RailWorks Corporation

The railroad company RailWorks, U.S. based, has fallen victim to ransomware in which an unauthorized third party encrypted its servers and systems.

The encryption of the data took place on 27th January and the information that may have been compromised includes: names, addresses, driver's license numbers or government issued ID, Social Security numbers, dates of birth and dates of hire, termination or retirement.

After knowing the problem, the company notified its employees by mail that no misuse of data had occurred. However, it has advised its customers to freeze their credit accounts and activate a monitoring, data protection and online fraud alert service temporarily.