• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
  • Skip to footer
  • Jobs
  • Career
    • Cyber Security Training
    • Work from Home
    • Cyber Security Analyst
    • Remote Work – Six Ways to Keep Your Data Safe When Working Remotely
  • Field Guide
  • Newsletter Signup
  • Deals
  • News
AskCyberSecurity.com

AskCyberSecurity.com

Cyber Security News & Information

  • Home
  • Data Privacy
    • Gamers
    • Government Cyber Security
      • Legislation
      • Standards
        • What are the risks of computer security?
        • Medical Cyber Security
    • Social Media
  • Security
    • Data Breaches
    • Scams
    • Malware
  • Software
    • Apps
    • Web Browsers
  • Glossary
    • Cyber Security Acronyms
  • About Ask Cyber Security
    • Authors
    • Contact Us
  • VPN
    • How Do I Know If My VPN is Working?
    • Best Free VPN iPhone
    • Why Use a VPN?
    • NordVPN vs IPVanish
    • Private Internet Access Download
    • Best VPN for Streaming
      • TikTok VPN
    • VPN Porn
    • Computer Security Software – What You Really Need
  • Tutorials
AskCyber Home » News » Government Cyber Security » City of Baltimore Hacked by Ransomware

City of Baltimore Hacked by Ransomware

2019-05-08 by Michelle Dvorak

City of Baltimore, Maryland Hacked by Ransomware Again

Baltimore, Maryland has once again been struck by another ransomware attack. The cyber attack began yesterday morning and is the second ransomware attack for Baltimore. It is unknown at this time which malware variant was used in the attack, City employees were unable to work on their computers and many phone systems were down. City employees were instructed to disconnect their computers and many were told to go home.

Unlike last year’s malware attack, essential services like fire, police, and emergency medical services including 911 and 311 phone systems were unaffected. The ransomware attack halted customer service and financial transaction for many city of Baltimore departments. Residents were unable to pay their bills for city and county accounts. Late water bill fees are suspended due to the ransomware attack. The Department of Public Works resorted to using Twitter to communicate. Public Works tweeted that email and customer service phone lines were not functional

Heimdel Malware Protection
Heimdal Malware Protection

Baltimore was the target of another ransomware attack just over one year ago. In March of 2018, Baltimore’s 911 and emergency dispatch system was hacked in another ransomware attack that disabled the city’s computer emergency dispatch system. The ransomware controlled the 911 system for about 17 hours. Dispatchers were forced to revert to manual mode to handle emergency, safety, and medical calls until control of the computer system was restored.

Ransomware is not the only cybersecurity issue for Baltimore. In January 2019, former Baltimore Mayor Pugh ordered a cybersecurity investigation after a Department of Public Works water department employee gave himself privileged access to the director’s computer system. According to the Baltimore Inspector General, an analysis of the employee’s machine found hacking tools.

Other Hacked Cities

Baltimore joins the list of cities to be attacked and shut down by hackers. In April of this year, hackers diverted payroll money from the city of Tallahassee, Florida’s direct deposit system. The month before, the tornado warning sirens in two Texas cities were hacked, disabling them ahead of a major storm.

Like Baltimore, the city of Atlanta, Georgia was also the target of a ransomware attack in March 2018. “The city will not be paying any ransom at all,” Baltimore mayoral spokesman Lester Davis said. Also like Baltimore, Atlanta officials stated they would not pay any ransom money to hackers to regain control of their systems. The Atlanta damage was extensive. Municipal services were interrupted and data was destroyed. The cost of damages was estimated at $2.7 million.

How Are Computers Hacked?

Computers can be hacked in a number of attack vectors. Hackers send phishing emails to gain access and reset login credentials to email systems, bank accounts, as well as other important online accounts. Sometimes the goal of the attack is to gather more data for a future cyber attack. Most times, hackers are out to gather data or steal money. Personal information may be gleaned from social media sites such as Facebook, Twitter, Instagram, or others to develop a more targeted spear phishing attack. Skilled hackers develop malware and viruses to infiltrate entire networks. Hackers may hold a computer or system and demand a ransom for the return of control of the system. In 2016, US Presidential candidate Hillary Clinton’s campaign was the target of a Russian spear phishing attack. Campaign workers and volunteers were tricked by targeted spear phishing emails into giving up their email credentials. The hackers gained access to campaign email accounts and infected servers with malware.

NordVPN
NordVPN

What is Ransomware?

Malware is any unwanted software or app residing on a computer, network, hardware, smartphone or another device. Malware can also be called a virus although there are differences between the two. Malware can include viruses, spyware, adware, trojans, worms, and other exploits. Ransomware is a type of malware in which the computer, device, or data is taken over and controlled by the malware. Hackers demand a ransom, typically payable in cryptocurrency, to return control of the system to its owner.

Baltimore has shut down most of its servers to prevent the malware from infecting more machines. It is unknown how many servers or computers were affected by hackers. So far, there is no evidence that any personal data like payment information had been stolen because of the attack.

One of the best defenses against cyber attacks is to keep all hardware, computers, software, and application updated with the latest security patches. Web browsers like Chrome and Firefox regularly release updated versions of their software. The security updates address known and newly discovered vulnerabilities. Personal computers and smartphones can be set to accept updates automatically. Every app can be checked for updates by going into the settings of the respective app.

System administrators can protect systems by maintaining security patches and staying abreast of the latest cyber attack vectors. Recently a list of the 100 most commonly used passwords was published. Hackers use these lists to launch brute force attacks against online login systems. Lists of common passwords can be used as a dictionary of prohibited passwords. End users should avoid using any password on this list. Of course, strong passwords should be required by system administrators.

Filed Under: Government Cyber Security Tagged With: ransomware

About Michelle Dvorak

Michelle writes about cyber security, data privacy focusing on social media privacy as well as how to protect your IoT devices. She has worked in internet technology for over 20 years and owns METRONY, LLC. Michelle earned a B.S. in Engineering from Rensselaer Polytechnic Institute. Michelle published a guide to Cyber Security for Business Travelers


LinkedInTwitterFacebook

Primary Sidebar

Subscribe to Our Free Newsletter

We Don't Share or Sell Your Info

Web Browsers

Where Are My Saved Passwords in Chrome?

Google Removes 70 Malicious Browser Add-ons from Chrome Web Store

Firefox 75 Reports Your Browser Settings to Mozilla

Categories

Cyber Security Field Guide

Computer Security While TravelingGet Our Cyber Security Field Guide - Available on Amazon!

Recent Posts

Security Marketing Manager – Remote

Sr. Associate, Cybersecurity Architect – Pfizer

Strategic Customer Success Manager – Cybersecurity – Opportunity for Working Remotely

Top 20 Passwords Leaked on Dark Web

ISU Cybersecurity Leader Job Opening

Cyber Security News

Top 20 Passwords Leaked on Dark Web

… [Read More...] about Top 20 Passwords Leaked on Dark Web

Apple Warns of Actively Exploited Zero-Day Flaw

… [Read More...] about Apple Warns of Actively Exploited Zero-Day Flaw

IRS Stops Facial Recognition System for Online Access

… [Read More...] about IRS Stops Facial Recognition System for Online Access

National Cybersecurity Alliance Announces Data Privacy Week

… [Read More...] about National Cybersecurity Alliance Announces Data Privacy Week

More Cyber Security News

Tags

amazon Android Apple bitcoin China chrome CISA credit card DarkSide DHS DOJ Equifax Europe Facebook facial recognition FBI Firefox FTC games GDPR Google Government hacker identity theft India iPhone Iran IRS LinkedIn Microsoft North Korea PayPal phishing phishing email ransomware REvil Russia smartphone T-Mobile TikTok tutorial VPN WhatsApp WiFi Windows

Government

CBP Looks to Access Airline Passenger Data

FTC Releases Cyber Threat Video Playlist

Malware Found on US Government Funded Phones

UK NCA Reaches Out to Youth to Deter Cybercrimes

More Posts from this Category

Footer

Menu

  • Home
  • About
  • Authors
  • Newsletter Signup
  • PRIVACY POLICY

Search

Why Use a VPN?

NordVPN vs IPVanish VPN Review

NAVIGATION

  • Data Breaches
  • Data Privacy
  • Gamers
  • Scams
  • Malware

MEMBER NJCCIC

New Jersey Cybersecurity & Communications Integration Cell

STAY CONNECTED

  • Facebook
  • Instagram
  • Pinterest
  • YouTube
  • Twitter
  • RSS

Copyright © 2023 · AskCyberSecurity.com · METRONY, LLC

Go to mobile version