Virtual Event: Threat Detection and Incident Response Summit - Watch Sessions
Connect with us

Hi, what are you looking for?



$1.1M Paid to Resolve Ransomware Attack on California County

A $1.1 million payment was made to resolve a ransomware attack on San Bernardino county’s law enforcement computer network.

A $1.1 million payment was made to resolve a ransomware attack on a California county’s law enforcement computer network, Southern California News Group reported.

The San Bernardino County Sheriff’s Department announced in April that a “network disruption” was being investigated by information technology staff and forensic specialists, and that the FBI and Department of Homeland Security were notified.

County spokesperson David Wert said the county paid $511,852 and the remainder was covered by insurance, the news group reported Thursday.

“The decision whether to render payment was the subject of careful consideration,” Wert said.

Sheriff’s Department spokesperson Gloria Huerta said an investigation is continuing to try to determine whether any information was stolen and whether the ransom payment can be traced to identify the hacker.

Sheriff Shannon Dicus said this week that public safety wasn’t compromised by the ransomware attack but it hindered some tasks.

Deputies, for example, could not access a system that provides information on whether a person is wanted for crimes elsewhere in the country, so they had to request that other agencies make the record checks, Dicus said.

Advertisement. Scroll to continue reading.

Ransomware involves hackers essentially holding a computer system hostage by encrypting its files and demanding payment in exchange for the software key.

Related: Ransomware Operators Leak Data Allegedly Stolen From City of Oakland

Related: Ransomware Attack Affects Dallas Police, Court Websites

Related: Western Digital Confirms Ransomware Group Stole Customer Information

Written By

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

SecurityWeek’s Threat Detection and Incident Response Summit brings together security practitioners from around the world to share war stories on breaches, APT attacks and threat intelligence.


Securityweek’s CISO Forum will address issues and challenges that are top of mind for today’s security leaders and what the future looks like as chief defenders of the enterprise.


Expert Insights

Related Content


The changing nature of what we still generally call ransomware will continue through 2023, driven by three primary conditions.


Satellite TV giant Dish Network confirmed that a recent outage was the result of a cyberattack and admitted that data was stolen.

Management & Strategy

Industry professionals comment on the recent disruption of the Hive ransomware operation and its hacking by law enforcement.


The FBI dismantled the network of the prolific Hive ransomware gang and seized infrastructure in Los Angeles that was used for the operation.


Several major organizations are confirming impact from the latest zero-day exploits hitting Fortra's GoAnywhere software.


The City of Oakland has disclosed a ransomware attack that impacted several non-emergency systems.

Malware & Threats

Unpatched and unprotected VMware ESXi servers worldwide have been targeted in a ransomware attack exploiting a vulnerability patched in 2021.


The personal and health information of more than 3.3 million individuals was stolen in a ransomware attack at Regal Medical Group.