The City of Columbus is investigating a potential data breach following a thwarted ransomware attack on July 18, 2024. The city's swift response prevented the full encryption of its IT systems, but the extent of data access by the attackers remains unknown.
On July 18, 2024, Columbus faced a severe cybersecurity incident involving a sophisticated foreign threat actor attempting to deploy ransomware across its IT infrastructure. While the city's Department of Technology managed to disrupt the attack and prevent encryption, it is still determining the amount of city data potentially accessed by the threat actor. The city's swift actions included severing internet connectivity, which significantly limited the potential damage.
In response to the breach, the city immediately enlisted the help of the FBI and Homeland Security. Mayor Andrew J. Ginther acknowledged the serious nature of the incident and praised the rapid response from the city's Department of Technology and federal authorities. “The City of Columbus was the victim of a crime committed by an established, sophisticated threat actor operating overseas. I’m grateful for the swift and bold action of our Department of Technology, the FBI, and Homeland Security to protect our IT systems, our residents, and our employees,” Ginther stated.
Columbus, the capital of Ohio with a population of approximately 905,000, is working to assess the impact on personal and municipal data. The Department of Technology, along with federal authorities and cybersecurity experts, is conducting a thorough investigation to understand the breach's full scope and ensure that the city's systems are secure before fully restoring online services. Throughout the incident, essential services such as the 9-1-1 and 3-1-1 systems remained operational, and external email functions have been restored in city buildings.
The ongoing forensic investigation has revealed that the attackers gained access to the city's systems through a website download rather than an email link, as initially believed. The city is in the process of identifying individuals whose personal information may have been compromised and plans to notify and provide guidance to affected parties in the coming weeks.
Residents of Columbus are advised to take proactive steps to safeguard their personal information, including:
- Regularly check bank and credit card statements for unauthorized transactions.
- Update passwords for critical accounts, especially if the same password is used across multiple services.
- Implement two-factor authentication for additional security on sensitive accounts.
- Report any unusual activity or potential data breaches to the relevant authorities.
The City of Columbus is committed to transparency and will continue to provide updates as more information becomes available. However, no specific dates for the completion of the investigation were given this time.
Leave a Reply