Ransom Attack Strikes New Orleans

New Orleans is the latest city to fall victim to a cyberattack, although it appears to have fared better than other American cities. The city declared a state of emergency and a shut-down of most of its computers after detecting suspicious activity, including ransomware and a flurry of phishing emails. 

It's not clear if the ransomware compromised any systems, although Mayor LaToya Cantrell said that there had been no ransom requests or evidence of employees being tricked into handing over login details.

Officials are running many services on pen and paper until it's deemed safe for computers to come back online, although the Orleans Parish Communication District (which handles both 311 and 991 lines) and courts weren't affected. The state of emergency was declared on Friday 13th December following what the city has described as a “cybersecurity incident.”New Orleans officials said after their systems were targeted by phishing and ransomware attacks on Friday.

New Orleans government employees responded swiftly to the attacks. They started to notice suspicious activity around 5am, received more reports about potential issues at about 8am and shut down their systems at 11am.

City employees were ‘immediately alerted to power down computers, unplug devices, and disconnect from WiFi. The declaration, made by Mayor LaToya Cantrell, warned that the emergency was potentially ongoing and that the incident “could result in the endangerment of property” in the city. City officials later confirmed that the attack involved ransomware but that no information has been compromised. NOLA Ready, New Orleans’ emergency preparedness campaign, further noted that many of the city’s computers were shut down “out of an abundance of caution.”

The city also activated its emergency operations center and enlisted the help of “cybersecurity resources” from the Louisiana State Police, the FBI, the state’s National Guard, and the US Secret Service. Louisiana Governor. John Bel Edwards had only just declared a state of emergency late last month after numerous state agencies were similarly targeted by hackers.

The attacks are part of a growing trend across the country in which attackers attempt to cripple major government entities with malware in order to receive a large payoff. Earlier this year other major cities including Baltimore and Greenville, North Carolina, were hit with ransomware as well. In both instances, officials refused to pay a ransom to the hackers in order to have their computers’ data restored.

Officials later confirmed that all of the systems connected to their network were shut down. This led to the closure of some offices, and the city's official website was taken offline, but it was also supposed to isolate any potentially compromised devices.

TomsHardware:      DailyDot:          Endgadget

You Might Also Read:

Hackers Demand Ransom After Stealing Johannesburg's Data:

 

« Microsoft Warning: Avoid Reusing Passwords
Insiders Are Cyber Criminals Favourite Connection »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

TÜV SÜD Academy UK

TÜV SÜD Academy UK

TÜV SÜD offers expert-led cybersecurity training to help organisations safeguard their operations and data.

Syxsense

Syxsense

Syxsense brings together endpoint management and security for greater efficiency and collaboration between IT management and security teams.

TechVets

TechVets

TechVets is a non-for-profit helping UK veterans and service leavers retrain into Cyber Security and Technology jobs.

IoT Defense

IoT Defense

IoT Defense (IOTD) is a cybersecurity and networking company building solutions that enable the protection of networks and the ever-increasing prevalence of IoT devices.

Aristi Labs

Aristi Labs

Aristi Labs provides comprehensive security solutions to help businesses protect data and intellectual property, minimizing downtime and maximizing productivity.

PreEmptive Solutions

PreEmptive Solutions

PreEmptive Protection hit the sweet spot between cost, convenience and functionality by helping you protect and secure your apps in a smarter way.

OriginalMy

OriginalMy

OriginalMy is a cybersecurity startup, focussed on digital governance and information authentication. Its mission is to prove authenticity using state-of-the-art cryptography and blockchain technology

Cado Security

Cado Security

Cado Security is pushing digital forensics, and cyber incident response to the next level with an incident response software platform and specialist consulting services.

TAV Technologies

TAV Technologies

TAV Technologies is a provider of technology services to the aviation industry in areas including airport infrastructure systems, digital transformation and cybersecurity.

Risk Strategies

Risk Strategies

Risk Strategies is a leading specialty risk management consultancy and insurance broker offering smarter, practical approaches to risk mitigation including Cyber Liability insurance.

Accedian

Accedian

Accedian is a leader in performance analytics and end user experience solutions, dedicated to providing our customers with the ability to assure their digital infrastructure.

Nanitor

Nanitor

Nanitor is a powerful cybersecurity management platform focusing on hardening security fundamentals across your global IT infrastructure.

Persistent Systems

Persistent Systems

Persistent Systems are a trusted Digital Engineering and Enterprise Modernization partner, combining deep technical expertise and industry experience to help our clients.

Cisilion

Cisilion

Cisilion's mission is simple – to transform and connect business with next-generation IT infrastructure. Our expertise includes enterprise networking, security, data centre & cloud, managed services.

Cypfer

Cypfer

CYPFER is a global market leader in ransomware post-breach remediation and cyber-attack first response.

Sphinx

Sphinx

Sphinx provide advanced security consulting services and cyber solutions to federal and private industry.

Noma Security

Noma Security

Noma Security's mission is Application Security for the Entire Data & AI Lifecycle.

Bluecyber Insurance

Bluecyber Insurance

At Bluecyber, we are revolutionizing the cyber insurance market, democratizing access to digital protection for small and medium-sized businesses.