Cities and towns continue to be a profitable target for successful ransomware attacks. As we previously reported [view related posts], the list of cities and towns getting hit with ransomware attacks continues to grow.
Last week, Jackson County, Georgia admitted that it paid hackers $400,000 to obtain access to its information that was locked down by a ransomware attack. The ransomware attack locked agencies out of almost all of their systems, including the sheriff’s office that does criminal bookings, causing the county to try to do business the old-fashioned way—using paper.
According to the County Manager, rebuilding the networks from scratch (apparently there was no back-up system in place), would be a long and costly endeavor. The City Manager said they were facing closure of operations for many months, so paying the ransom was an easier option.
After payment was made, the hacker sent the decryption key, which allowed county employees to get back on their computers and resume work. The ransomware involved was Ryuk, which has been rampant and is believed to originate from Eastern Europe or Russia.
The message to state and municipal governmental entities? Check that back-up system and test it to see if it works in an emergency.