SECURITY
SECURITY
SECURITY
Weeks after attack by ransomware, Baltimore government services remain offline
Government services in Baltimore remain crippled by ransomware over two weeks after it the city was first attacked.
The attack involved RobbinHood ransomware, which spread throughout the city’s network, disabling systems ranging from payment services to police, the Department of Transport and closed-circuit television networks. The ransomware is estimated to have taken offline more than 10,000 government computers.
Those behind the ransomware attack are demanding a payment of 13 bitcoins, worth just shy of $100,000, for a decryption key. In a twist, suggesting that the attack was targeted rather than simply a random infection, the hackers are also saying that they will start deleting the ransomed files on the city’s network if the ransom isn’t paid.
Despite the inconvenience to residents, the city is refusing to pay the ransom while at the same time struggling to restore systems.
While taking an arguably moral stand, it would appear that the city was ill-prepared for the attack. Reports suggest some government services could remain offline for months.
“We [have] established a web-based incident command, shifted operations into manual mode and established other workarounds to facilitate the continued delivery of services to the public,” Baltimore Mayor Bernard Young said in a statement. “We continue to adjust and refine the delivery of those services that were only partly interrupted and to pursue ways to reactivate any services that were completely interrupted.”
Baltimore is not the first city to be targeted by ransomware and it won’t be the last. Atlanta was hit in March 2018 and three months later the city was still dealing with the consequences.
Joel Windels, chief marketing officer at NetMotion Software Inc., told SiliconANGLE that “investment in enterprise security technologies is thwarting more threats, so attackers are turning to easier targets such as public sector entities.
“Hospitals and government bodies are struggling to keep up with the latest developments in cybersecurity, particularly as new endpoints like mobile devices and their apps proliferate without adequate protection or oversight,” Windels said. “As Baltimore grapples to find the source of this particular attack, it is clear that more effort is needed to prevent these attacks from occurring.”
Photo: Marylandstater/Wikimedia Commons
A message from John Furrier, co-founder of SiliconANGLE:
Support our mission to keep content open and free by engaging with theCUBE community. Join theCUBE’s Alumni Trust Network, where technology leaders connect, share intelligence and create opportunities.
- 15M+ viewers of theCUBE videos, powering conversations across AI, cloud, cybersecurity and more
- 11.4k+ theCUBE alumni — Connect with more than 11,400 tech and business leaders shaping the future through a unique trusted-based network.
About SiliconANGLE Media
SiliconANGLE Media is a recognized leader in digital media innovation, uniting breakthrough technology, strategic insights and real-time audience engagement. As the parent company of SiliconANGLE, theCUBE Network, theCUBE Research, CUBE365, theCUBE AI and theCUBE SuperStudios — with flagship locations in Silicon Valley and the New York Stock Exchange — SiliconANGLE Media operates at the intersection of media, technology and AI.
Founded by tech visionaries John Furrier and Dave Vellante, SiliconANGLE Media has built a dynamic ecosystem of industry-leading digital media brands that reach 15+ million elite tech professionals. Our new proprietary theCUBE AI Video Cloud is breaking ground in audience interaction, leveraging theCUBEai.com neural network to help technology companies make data-driven decisions and stay at the forefront of industry conversations.
