Ransom Attack Strikes New Orleans

Uploaded on 2019-12-16 in TECHNOLOGY--Hackers, GOVERNMENT-Local, FREE TO VIEW

New Orleans is the latest city to fall victim to a cyberattack, although it appears to have fared better than other American cities. The city declared a state of emergency and a shut-down of most of its computers after detecting suspicious activity, including ransomware and a flurry of phishing emails. 

It's not clear if the ransomware compromised any systems, although Mayor LaToya Cantrell said that there had been no ransom requests or evidence of employees being tricked into handing over login details.

Officials are running many services on pen and paper until it's deemed safe for computers to come back online, although the Orleans Parish Communication District (which handles both 311 and 991 lines) and courts weren't affected. The state of emergency was declared on Friday 13th December following what the city has described as a “cybersecurity incident.”New Orleans officials said after their systems were targeted by phishing and ransomware attacks on Friday.

New Orleans government employees responded swiftly to the attacks. They started to notice suspicious activity around 5am, received more reports about potential issues at about 8am and shut down their systems at 11am.

City employees were ‘immediately alerted to power down computers, unplug devices, and disconnect from WiFi. The declaration, made by Mayor LaToya Cantrell, warned that the emergency was potentially ongoing and that the incident “could result in the endangerment of property” in the city. City officials later confirmed that the attack involved ransomware but that no information has been compromised. NOLA Ready, New Orleans’ emergency preparedness campaign, further noted that many of the city’s computers were shut down “out of an abundance of caution.”

The city also activated its emergency operations center and enlisted the help of “cybersecurity resources” from the Louisiana State Police, the FBI, the state’s National Guard, and the US Secret Service. Louisiana Governor. John Bel Edwards had only just declared a state of emergency late last month after numerous state agencies were similarly targeted by hackers.

The attacks are part of a growing trend across the country in which attackers attempt to cripple major government entities with malware in order to receive a large payoff. Earlier this year other major cities including Baltimore and Greenville, North Carolina, were hit with ransomware as well. In both instances, officials refused to pay a ransom to the hackers in order to have their computers’ data restored.

Officials later confirmed that all of the systems connected to their network were shut down. This led to the closure of some offices, and the city's official website was taken offline, but it was also supposed to isolate any potentially compromised devices.

TomsHardware:      DailyDot:          Endgadget

You Might Also Read:

Hackers Demand Ransom After Stealing Johannesburg's Data:

 

« Microsoft Warning: Avoid Reusing Passwords
Insiders Are Cyber Criminals Favourite Connection »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

The PC Support Group

The PC Support Group

A partnership with The PC Support Group delivers improved productivity, reduced costs and protects your business through exceptional IT, telecoms and cybersecurity services.

CYRIN

CYRIN

CYRIN® Cyber Range. Real Tools, Real Attacks, Real Scenarios. See why leading educational institutions and companies in the U.S. have begun to adopt the CYRIN® system.

CloudSigma

CloudSigma

CloudSigma, a pure-cloud IaaS provider offers flexible and innovative cloud hosting solutions for companies of all sizes both in Europe and the US.

Astra

Astra

Astra's website security solution provides real-time protection against malware, hackers, SQLi, XSS, DDoS, LFI and RFI.

Payatu

Payatu

Payatu Technologies is a security testing and services company specialized in Software, Application and Infrastructure security assessments and deep technical security training.

Relyum

Relyum

Relyum provides innovative solutions for networking, synchronization and cybersecurity in critical systems.

Partnership for Conflict, Crime and Security Research (PaCCS)

Partnership for Conflict, Crime and Security Research (PaCCS)

PaCCS delivers high quality and cutting edge research to improve our understanding of current and future global security challenges in areas including cybersecurity.

iSecurity Consulting

iSecurity Consulting

iSecurity delivers a complete lifecycle of digital protection services across the globe for public and private sector clients.

CyberClan

CyberClan

CyberClan’s carefully selected team of experts is capable of solving complex cyber security challenges – keeping your data secure and your businesses running as usual.

Spin Technology

Spin Technology

SpinOne is a SaaS data protection platform designed to monitor, secure, and back up your G Suite and O365 data, improve compliance, and reduce IT costs.

IP2Location

IP2Location

IP2Location provide services to identify geolocation by IP address, and to detect IP addresses associated with anonymous proxy servers, which are often used for fraud and spamming purposes.

Grip Security

Grip Security

Grip Security provides comprehensive visibility, governance and data security to help enterprises effortlessly secure a burgeoning and chaotic SaaS ecosystem.

LBMC

LBMC

LBMC is a professional services solutions provider in accounting and finance, human resources, technology, risk and information security, and wealth advisory services.

Ward Solutions

Ward Solutions

Ward Solutions are an information security consultancy and managed services company. We help organisations protect their brand, people, assets, intellectual property and profits.

Persona

Persona

At Persona, we’re humanizing online identity by helping companies verify that their users are who they say they are.

Valtix

Valtix

Valtix is the first and only multi-cloud network security platform delivered as a service that enables cloud teams to meet the most stringent security requirements in a cloud-first & simple way.

Menaya

Menaya

Menaya provide Ethical Hackers for leading companies while also providing cyber security solutions to help major infrastructures protect against cyber crime.

Synoptek

Synoptek

Synoptek is a global systems integrator and managed IT services provider (MSP). We offer comprehensive IT management and consultancy services to organizations worldwide.