{
	"id": "6a31eeab-08e2-4d7f-89d4-0c18bdb62049",
	"created_at": "2026-04-06T00:13:26.560532Z",
	"updated_at": "2026-04-10T03:20:28.304777Z",
	"deleted_at": null,
	"sha1_hash": "a869b93f43e317526aba8ceeff7401676b2d50ac",
	"title": "Montreal's STM public transport system hit by ransomware attack",
	"llm_title": "",
	"authors": "",
	"file_creation_date": "0001-01-01T00:00:00Z",
	"file_modification_date": "0001-01-01T00:00:00Z",
	"file_size": 1129072,
	"plain_text": "Montreal's STM public transport system hit by ransomware attack\r\nBy Lawrence Abrams\r\nPublished: 2020-10-21 · Archived: 2026-04-05 18:38:55 UTC\r\nMontreal's Société de transport de Montréal (STM) public transport system was hit with a RansomExx ransomware attack\r\nthat has impacted services and online systems.\r\nOn October 19th, STM suffered an outage that affected its IT systems, website, and customer support.\r\nWhile these outages did not affect the operation of buses or metro systems, people with disabilities who rely on STM's door-to-door paratransit service are affected as it uses an online registration system.\r\nOn Tuesday morning, STM announced that the outages were caused by a 'computer virus that caused a major failure on\r\nvarious platforms.\"\r\nhttps://www.bleepingcomputer.com/news/security/montreals-stm-public-transport-system-hit-by-ransomware-attack/\r\nPage 1 of 4\n\n0:00\r\nhttps://www.bleepingcomputer.com/news/security/montreals-stm-public-transport-system-hit-by-ransomware-attack/\r\nPage 2 of 4\n\nVisit Advertiser websiteGO TO PAGE\r\nLater that evening, STM confirmed that they had suffered a ransomware attack and are working with law enforcement and\r\nexternal experts to restore their systems and investigate the attack.\r\n\"The Société de transport de Montréal (STM) wishes to inform its customers that the major computer failure it has suffered\r\nsince October 19 in the afternoon is the consequence of a ransomware type, targeting all applications, despite the various\r\ndefenses that are in place to deal with this type of eventuality,\" \r\nThe STM website is still down, but visitors are now redirected to www.lastm.info, where information about public transport\r\nservices and the attack is posted.\r\nSTM website outage information\r\nIf you have first-hand information about this or other unreported cyberattacks, you can confidentially contact us on Signal\r\nat +16469613731 or on Wire at @lawrenceabrams-bc.\r\nRansomExx gang behind attack\r\nAccording to a source familiar with the situation, STM suffered an attack by the RansomExx ransomware operation.\r\nRansomExx is a rebranded version of the Defray777 ransomware that become more active in June, with attacks against\r\norganizations such as the Texas Department of Transportation (TxDOT), Konica Minolta, IPG Photonics, and more recently,\r\nTyler Technologies.\r\nWhen conducting attacks, RansomExx operators will compromise a network and steal unencrypted files as they spread\r\nlaterally through the system. Once they gain access to the Windows domain controller, they deploy the ransomware on all\r\navailable devices.\r\nIt is not known if STM has been in contact with the ransomware operators or the ransom amount.\r\nThis is a developing story.\r\nhttps://www.bleepingcomputer.com/news/security/montreals-stm-public-transport-system-hit-by-ransomware-attack/\r\nPage 3 of 4\n\nAutomated Pentesting Covers Only 1 of 6 Surfaces.\r\nAutomated pentesting proves the path exists. BAS proves whether your controls stop it. Most teams run one without the\r\nother.\r\nThis whitepaper maps six validation surfaces, shows where coverage ends, and provides practitioners with three diagnostic\r\nquestions for any tool evaluation.\r\nSource: https://www.bleepingcomputer.com/news/security/montreals-stm-public-transport-system-hit-by-ransomware-attack/\r\nhttps://www.bleepingcomputer.com/news/security/montreals-stm-public-transport-system-hit-by-ransomware-attack/\r\nPage 4 of 4",
	"extraction_quality": 1,
	"language": "EN",
	"sources": [
		"ETDA"
	],
	"references": [
		"https://www.bleepingcomputer.com/news/security/montreals-stm-public-transport-system-hit-by-ransomware-attack/"
	],
	"report_names": [
		"montreals-stm-public-transport-system-hit-by-ransomware-attack"
	],
	"threat_actors": [],
	"ts_created_at": 1775434406,
	"ts_updated_at": 1775791228,
	"ts_creation_date": 0,
	"ts_modification_date": 0,
	"files": {
		"pdf": "https://archive.orkl.eu/a869b93f43e317526aba8ceeff7401676b2d50ac.pdf",
		"text": "https://archive.orkl.eu/a869b93f43e317526aba8ceeff7401676b2d50ac.txt",
		"img": "https://archive.orkl.eu/a869b93f43e317526aba8ceeff7401676b2d50ac.jpg"
	}
}