Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Ransomware

Mayor of Columbus, Ohio, Says Ransomware Attackers Stole Corrupted, Unusable Data

Hackers recently stole data from Ohio’s largest city, but what they got was not usable and no personal information about city workers was made available online, the mayor said.

Hackers recently stole data from Ohio’s largest city, but what they got was not usable and no personal information about city workers was made available online, the mayor said.

Columbus Mayor Andrew Ginther confirmed the data breach and noted Tuesday that the city never received a ransom request. The city learned Friday that most of the data published to the dark web by the ransomware group Rhysida was corrupted or encrypted, he said.

The group initially claimed to have 6.5 terabytes of stolen data — including log-in information, emergency service files and city camera access — that it unsuccessfully put up for auction. But Ginther said the city’s forensics indicated the group had far less data than that, and that its screenshots posted to the dark web were “the most compelling asset” it had.

After the breach, city workers, including police and fire, had said their personal information had been compromised. Ginther, though, said that while employees’ personal information was not uploaded to the dark web, someone temporarily accessed it during the attack.

The city’s payroll system was accessed long enough to view files, but there is no evidence files were downloaded or posted to the dark web, city officials said. There also is no evidence that data belonging to the general public was exposed.

The city is now focusing on increasing digital security and technology training to prevent another breach, Ginther said.

“I think when this is all said and done, we will have spent several million dollars dealing with the attack,” Ginther said.

Other major cities in Ohio have also dealt with cyberattacks. Cleveland’s city hall was closed to the public for several days in June following a ransomware attack that forced the city to shut down most of its systems, and Akron had to shut down some city functions after a digital attack in 2019.

Advertisement. Scroll to continue reading.

Related: Ransomware Attack Disrupts Seattle Public Library Services

Related: Personal Information Stolen in City of Wichita Ransomware Attack

Written By

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Hear from experts as they explore the latest trends, challenges and innovations in Attack Surface Management.

Register

Event: ICS Cybersecurity Conference

The leading industrial cybersecurity conference for Operations, Control Systems and IT/OT Security professionals to connect on SCADA, DCS PLC and field controller cybersecurity.

Register

People on the Move

Janet Rathod has been named VP and CISO at Johns Hopkins University.

Barbara Larson has joined SentinelOne as Chief Financial Officer.

Amy Howland has been named Partner and CISO at Guidehouse.

More People On The Move

Expert Insights