Ransom Attack Strikes New Orleans

New Orleans is the latest city to fall victim to a cyberattack, although it appears to have fared better than other American cities. The city declared a state of emergency and a shut-down of most of its computers after detecting suspicious activity, including ransomware and a flurry of phishing emails. 

It's not clear if the ransomware compromised any systems, although Mayor LaToya Cantrell said that there had been no ransom requests or evidence of employees being tricked into handing over login details.

Officials are running many services on pen and paper until it's deemed safe for computers to come back online, although the Orleans Parish Communication District (which handles both 311 and 991 lines) and courts weren't affected. The state of emergency was declared on Friday 13th December following what the city has described as a “cybersecurity incident.”New Orleans officials said after their systems were targeted by phishing and ransomware attacks on Friday.

New Orleans government employees responded swiftly to the attacks. They started to notice suspicious activity around 5am, received more reports about potential issues at about 8am and shut down their systems at 11am.

City employees were ‘immediately alerted to power down computers, unplug devices, and disconnect from WiFi. The declaration, made by Mayor LaToya Cantrell, warned that the emergency was potentially ongoing and that the incident “could result in the endangerment of property” in the city. City officials later confirmed that the attack involved ransomware but that no information has been compromised. NOLA Ready, New Orleans’ emergency preparedness campaign, further noted that many of the city’s computers were shut down “out of an abundance of caution.”

The city also activated its emergency operations center and enlisted the help of “cybersecurity resources” from the Louisiana State Police, the FBI, the state’s National Guard, and the US Secret Service. Louisiana Governor. John Bel Edwards had only just declared a state of emergency late last month after numerous state agencies were similarly targeted by hackers.

The attacks are part of a growing trend across the country in which attackers attempt to cripple major government entities with malware in order to receive a large payoff. Earlier this year other major cities including Baltimore and Greenville, North Carolina, were hit with ransomware as well. In both instances, officials refused to pay a ransom to the hackers in order to have their computers’ data restored.

Officials later confirmed that all of the systems connected to their network were shut down. This led to the closure of some offices, and the city's official website was taken offline, but it was also supposed to isolate any potentially compromised devices.

TomsHardware:      DailyDot:          Endgadget

You Might Also Read:

Hackers Demand Ransom After Stealing Johannesburg's Data:

 

« Microsoft Warning: Avoid Reusing Passwords
Insiders Are Cyber Criminals Favourite Connection »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

Resecurity, Inc.

Resecurity, Inc.

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

Alvacomm

Alvacomm

Alvacomm offers holistic VIP cybersecurity services, providing comprehensive protection against cyber threats. Our solutions include risk assessment, threat detection, incident response.

National Security Agency (NSA)

National Security Agency (NSA)

NSA is a US intel agency responsible for the protection of government communications and information systems against penetration and network warfare.

Cryptomathic

Cryptomathic

Cryptomathic is an expert on commercial crypto - we develop, deliver and support the most secure and efficient off-the-shelf and customised solutions.

InfoWatch

InfoWatch

InfoWatch solutions allow you to protect data and information assets that are critically important to your business.

Guidewire

Guidewire

Guidewire Cyence™ Risk Analytics is a cloud-native economic cyber risk modeling solution built to help the insurance industry quantify cyber risk exposures.

Kudelski Security

Kudelski Security

Kudelski Security is an international cybersecurity company providing innovative, independent and tailored security solutions for large enterprise and public sector clients.

NPCore

NPCore

NPCore is specialized in defense solution against unknown APT and Ransomware and provides two-level defense on network and endpoint based on behavior.

PrimeKey

PrimeKey

PrimeKey provides organisations with the ability to implement security solutions such as e-ID, e-Passports, authentication, digital signatures, unified digital identities and validation.

Crayonic

Crayonic

Crayonic digital identity technologies protect and guarantee the identity of people and things.

LogicHub

LogicHub

LogicHub is built on the principle that every decision process for threat detection and response can and should be automated.

Singtel Innov8

Singtel Innov8

Singtel Innov8, the venture capital arm of the Singtel Group, invests in and partners with innovative technology start-ups globally.

Nextgen Group

Nextgen Group

Nextgen Group is a pioneering technology services group with innovative and unique services across enterprise software, cloud, data management, and cybersecurity solutions.

Scybers

Scybers

Scybers are a global cybersecurity advisory and managed services company. With our deep expertise, we help our clients reduce their cyber risks with confidence.

xdr.global

xdr.global

Xdr.global is a cybersecurity consulting firm, focused on promoting and aligning Extended Detection and Response (XDR) security solutions.

Daisy Corporate Services

Daisy Corporate Services

Daisy is one of the largest providers of communications and IT solutions across the UK, with a portfolio spanning unified communications, cloud, cyber security and resilience.

Sri Lanka CERT

Sri Lanka CERT

Sri Lanka CERT is the National Centre for Cyber Security, which has the national responsibility of protecting the nation’s cyberspace from cyber threats.

Oxygen Technologies

Oxygen Technologies

Oxygen Technologies is a business systems strategy and integration company offering a variety of solutions to give our clients ways to work smarter not harder.