Ransom Attack Strikes New Orleans

New Orleans is the latest city to fall victim to a cyberattack, although it appears to have fared better than other American cities. The city declared a state of emergency and a shut-down of most of its computers after detecting suspicious activity, including ransomware and a flurry of phishing emails. 

It's not clear if the ransomware compromised any systems, although Mayor LaToya Cantrell said that there had been no ransom requests or evidence of employees being tricked into handing over login details.

Officials are running many services on pen and paper until it's deemed safe for computers to come back online, although the Orleans Parish Communication District (which handles both 311 and 991 lines) and courts weren't affected. The state of emergency was declared on Friday 13th December following what the city has described as a “cybersecurity incident.”New Orleans officials said after their systems were targeted by phishing and ransomware attacks on Friday.

New Orleans government employees responded swiftly to the attacks. They started to notice suspicious activity around 5am, received more reports about potential issues at about 8am and shut down their systems at 11am.

City employees were ‘immediately alerted to power down computers, unplug devices, and disconnect from WiFi. The declaration, made by Mayor LaToya Cantrell, warned that the emergency was potentially ongoing and that the incident “could result in the endangerment of property” in the city. City officials later confirmed that the attack involved ransomware but that no information has been compromised. NOLA Ready, New Orleans’ emergency preparedness campaign, further noted that many of the city’s computers were shut down “out of an abundance of caution.”

The city also activated its emergency operations center and enlisted the help of “cybersecurity resources” from the Louisiana State Police, the FBI, the state’s National Guard, and the US Secret Service. Louisiana Governor. John Bel Edwards had only just declared a state of emergency late last month after numerous state agencies were similarly targeted by hackers.

The attacks are part of a growing trend across the country in which attackers attempt to cripple major government entities with malware in order to receive a large payoff. Earlier this year other major cities including Baltimore and Greenville, North Carolina, were hit with ransomware as well. In both instances, officials refused to pay a ransom to the hackers in order to have their computers’ data restored.

Officials later confirmed that all of the systems connected to their network were shut down. This led to the closure of some offices, and the city's official website was taken offline, but it was also supposed to isolate any potentially compromised devices.

TomsHardware:      DailyDot:          Endgadget

You Might Also Read:

Hackers Demand Ransom After Stealing Johannesburg's Data:

 

« Microsoft Warning: Avoid Reusing Passwords
Insiders Are Cyber Criminals Favourite Connection »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

Watch this webinar to hear security experts from Amazon Web Services (AWS) and SANS break down the myths and realities of what an NGFW is, how to use one, and what it can do for your security posture.

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

Cyber Together

Cyber Together

Cyber Together is dedicated to advancing the cyber security industry by giving businesses access to Israel’s leaders, innovators and great minds in the field of cyber security.

UZCERT

UZCERT

UZCERT is the national Computer Emergency Response Team for Uzbekistan.

NTNU Center for Cyber & Information Security (NTNU CCIS)

NTNU Center for Cyber & Information Security (NTNU CCIS)

NTNU CCIS is a national centre for research, education, testing, training and competence development within the area of cyber and information security.

SCADAfence

SCADAfence

SCADAfence offers cutting edge cybersecurity solutions designed to ensure the operational continuity of industrial (ICS/SCADA) networks.

Johnson Controls International

Johnson Controls International

Johnson Controls is a global diversified technology company with a focus on smart cities, energy, infrastructure and transportation including the security of automation and control systems.

Axiomtek

Axiomtek

Axiomtek is a leading design and manufacturing company in the industrial computer and embedded field.

GoCyber

GoCyber

GoCyber is a new, highly innovative cyber security training app that uses action based learning to significantly improve the online behaviour of all employees in less than a month.

High Wire Networks

High Wire Networks

High Wire Network’s Overwatch Managed Security Plaform-as-a-Service offers organizations end-to-end protection for networks, data, endpoints and users.

Cira Info Tech

Cira Info Tech

Cira InfoTech’s cyber security and network consulting and managed services deliver unmatched talented resources and capabilities required to design and build an agile and adaptive IT environment.

Wisetek

Wisetek

Wisetek is a global provider of end-to-end IT Asset Disposition (ITAD), reuse and secure data destruction management services to the world’s leading IT Corporations, data centres and manufacturers.

Venustech

Venustech

Venustech is a leading provider of network security products, trusted security management platforms, specialized security services and solutions.

Tech Vedika

Tech Vedika

Tech Vedika has access to technical guidance, training and resources from AWS to successfully undertake solution architecture, application development, application migration, and managed services.

O'Reilly Media

O'Reilly Media

O’Reilly’s help professionals learn best practices and discover emerging trends that will shape the future of the tech industry.

Innov8tif

Innov8tif

Innov8tif is an AI company specialised in providing ID assurance solutions — helping digital businesses to prevent frauds by verifying and authenticating customers identity.

Defendis

Defendis

Defendis develops AI-powered cybersecurity solutions for Government Agencies, Banks, and Businesses, designed to helps them contain data leaks, minimise damage, and proactively hunt for new threats.

When Group

When Group

World Health Energy Holdings, Inc. (d/b/a WHEN Group) is a High Tech Holding Company that specializes in the Cyber, Security and Telecom area.