Columbus has recently been hit by a major cyberattack, and it’s raising serious concerns about data security.
Last week, Mayor Andrew Ginther confirmed that foreign hackers attempted to lock part of the city’s tech infrastructure with ransomware. The attack caught the city off guard and led to swift action from the FBI and the U.S. Department of Homeland Security.
Here’s what happened
Hackers accessed Columbus’s internal network through a download of a .zip file from an internet website. This breach didn’t stem from an infected email, which is a common attack vector. The city’s IT staff managed to cut off access before the ransomware could encrypt any data, but the damage isn’t fully clear yet. Ginther likened the situation to robbers breaking into a house and trying to lock the occupants out while stealing some valuables.
The city’s immediate response included disconnecting all government systems from the internet. Despite this, some personal data may have been exposed. Ginther noted that while encryption was prevented, it’s possible hackers accessed certain data. The city plans to provide more information and guidance to affected individuals soon.
In the wake of the attack, city employees experienced significant disruptions.
They lost the ability to send or receive emails outside the city’s internal network. Several resident-facing websites and services were knocked offline, although specifics about which services were affected are still unclear. As of the latest updates, Columbus’ computer police dispatch system was only partially operational, with IT staff prioritizing public safety systems.
Ransomware attacks usually work by encrypting a computer’s hard drive or vital servers, rendering the data locked and inaccessible. Hackers demand a ransom, often in cryptocurrency, to restore access or avoid leaking the data publicly. This type of cybercrime is lucrative and sometimes even supported by governments like North Korea. The attackers behind this incident are described as sophisticated and established, operating from overseas.
While Columbus was the latest victim, it’s not alone.
In July, the Superior Court of Los Angeles County suffered a similar ransomware attack, and in March, a major attack targeted Change Healthcare, impacting insurance claims processing across various sectors.
The city’s swift action has helped mitigate the damage, but the full extent of the breach is still under investigation. As Columbus continues to restore services and bolster its defenses, it’s clear that cybersecurity remains a crucial priority for the city. Stay tuned for more updates as the situation unfolds.
Featured image originally posted to Flickr by Christiaan Colen at Flickr and licensed under CC BY-SA 2.0.
