2 min read

City of Cartersville Admits Paying Ryuk Ransomware Operators $380,000

Filip TRUȚĂ

March 02, 2020

Ad One product to protect all your devices, without slowing them down.
Free 90-day trial
City of Cartersville Admits Paying Ryuk Ransomware Operators $380,000

Almost a year after getting infected with ransomware, the City of Cartersville in the U.S. State of Georgia this week admitted to paying ransomware operators $380,000 to unlock its systems.

Cartersville reportedly got infected in early May last year when it saw “3 terabytes worth of data” vanish from city computers and servers. The city recovered within a week, but only after paying their cyber-aggressors to the tune of $380,000 in non-tradable Bitcoins, “with an additional $7,755.65 paid for transaction fees and negotiators,” according to the documents obtained by The Daily Tribune News.

The incident was made public this week after the news outlet filed an Open Records Request. Records obtained in the wake of such a request are documents that are supposed to be made available to members of the public on request. Each of the fifty states has its own set of laws governing which documents are considered public.

The payout is reportedly much lower than the amount demanded by the attackers. According to Assistant City Attorney Keith Lovell, the sum sought by the hackers was initially $2.8 million. The cybercrooks reportedly used Ryuk ransomware in the attack on Cartersville, a ransomware strain notoriously used in attacks on government and state institutions, and sometimes on critical infrastructures, including oil pipelines and hospitals.

City Manager Tamara Brock couldn”t confirm exactly how the attackers breached city systems. However, all signs point to a negligent city employee clicking on a malicious file in an email.

“What we basically have kind of narrowed it down to is it started as an email string, most likely, and came in when a file was clicked on,” Brock said.

The case is under investigation by the FBI.

Studies consistently show that employees are the most vulnerable link in a cyberattack. And according to a study commissioned by Bitdefender in 2019, companies placing more emphasis on cyber-training their employees are proportionally better at detecting and stopping an unfolding attack.

Fittingly, Cartersville is now regularly testing employees with intentional phishing emails to teach them how to recognize those for training purposes. The City has also migrated to a new email filtering provider, added monitoring software, and implemented a new protocol to help personnel “weed out malicious emails from their inboxes,” according to the report.

tags


Author



Right now

Top posts

Ultimate Privacy Guide for Your Facebook Account

Ultimate Privacy Guide for Your Facebook Account

August 31, 2021

6 min read
7 Signs It’s Time to Use Parental Controls On Your Family’s Devices

7 Signs It’s Time to Use Parental Controls On Your Family’s Devices

August 27, 2021

2 min read
Your Netflix Account May Be on Sale on Darkweb. Protect It

Your Netflix Account May Be on Sale on Darkweb. Protect It

August 13, 2021

3 min read
E-mails claiming your computer was hacked and your privacy exposed - what you need to know (spoiler: you can relax - they’re bluffing)

E-mails claiming your computer was hacked and your privacy exposed - what you need to know (spoiler: you can relax - they’re bluffing)

July 29, 2021

5 min read
Watch Out for These Ongoing Bank of America Phishing Campaigns Targeting Customers in the US

Watch Out for These Ongoing Bank of America Phishing Campaigns Targeting Customers in the US

July 16, 2021

3 min read
How to protect yourself against cyberstalking

How to protect yourself against cyberstalking

July 06, 2021

2 min read

FOLLOW US ON

SOCIAL MEDIA


You might also like

Man who "scraped and sold 178 million users' data" is sued by Facebook Man who "scraped and sold 178 million users' data" is sued by Facebook
Graham CLULEY

October 26, 2021

2 min read
Microsoft Teams Rolls Out End-to-End Encryption Microsoft Teams Rolls Out End-to-End Encryption
Silviu STAHIE

October 25, 2021

1 min read
Stay Updated to Keep Ahead of Cyber Threats – Updating Chameleon Explains Stay Updated to Keep Ahead of Cyber Threats – Updating Chameleon Explains
Filip TRUȚĂ

October 25, 2021

2 min read