Forensic analysis is currently ongoing but the virus, identified as “Ryuk” ransomware, may have entered the network of the MTSA facility via an email phishing campaign. Read on for more details.
Source: USCG
Link: MSIB: Cyberattack impacts MTSA facility operations