It has been nearly two weeks since the City of Atlanta's municipal government was hit with a crippling ransomware attack (https://www.zerohedge.com/news/2018-03-23/atlanta-city-government-hit-crippling-ransomware-attack) that wiped millions of government files and left the city's police and first responders relying on paper record-keeping.
So far, the city has made almost no progress in recovering its files. Police still don't have access to vital databases and investigative files. The town's auditor says the city's books have been destroyed, aside from whatever's left in the paper record. And top city officials are scrambling through a holiday weekend to piece together bits of city projects from personal computers and email addresses that weren't affected by the hack. Almost every government department was affected by the hack - though fortunately 10 of the 18 machines in the city auditor's office somehow avoided the hack.
"Our data management teams are working diligently to restore normal operations and functionalities to these systems and hope to be back online in the very near future," said Carlos Campos, a spokesman for the Atlanta PD. Campos said that some officers have returned to filing digital reports.
City officials (with an assist from the FBI) are trying to work through the hack. But if they don't find a way to recover at least some of the corrupted files soon, officials might be forced to pay the $51,000 ransom that the hackers are demanding (the FBI typically discourages the victims of these attacks from paying the fine).

The city's courts and its water department have been hobbled by the hack, Reuters (https://www.reuters.com/article/us-usa-cyber-atlanta/with-paper-and-phones-atlanta-struggles-to-recover-from-cyber-attack-idUSKBN1H70R0) said.

And in another worrisome sign, city officials haven't disclosed the extent to which the hackers affected the city's backed-up files. Perhaps this is why city officials have refused to comment on whether they're considering paying the ransom - though, according to Reuters (https://www.reuters.com/article/us-usa-cyber-atlanta/with-paper-and-phones-atlanta-struggles-to-recover-from-cyber-attack-idUSKBN1H70R0), they haven't paid it yet.


Ironically, the city completed a cybersecurity audit in January, and was in the process of implementing its recommendations when the attackers struck.
Mark Weatherford, a former senior DHS cyber official, told Reuters that hackers typically walk away when the ransom isn't paid.
He added that the situation could've been resolved quickly if the city just paid the ransom.

"The longer it goes, the worse it gets," he said.
"This could turn out to be really bad if they never get their data back."
Atlanta has nearly half a million residents - but 6 million people live in the Atlanta metropolitan area.

More at: https://www.zerohedge.com/news/2018-04-01/longer-it-goes-worse-it-gets-nearly-2-weeks-later-atlanta-still-reeling-crippling

Paying the ransom is cheaper than engaging security "experts". :cool:

Last month, Atlanta's city government was hit with a ransomware attack (https://www.engadget.com/2018/03/23/atlanta-government-computers-hit-by-ransomware/) that caused courthouse documents and services like payment processing to become inaccessible. The ransom demand was approximately $51,000 but according to the city's Department of Procurement (http://procurement.atlantaga.gov/awarded-emergency-procurements/), Atlanta has spent much more than that on efforts to rectify the situation. It appears that firms Secureworks and Ernst & Young were paid $650,000 and $600,000, respectively, for emergency services while Edelman was paid $50,000 for crisis communication services. Overall, the funds seemingly applied to the ransomware attack response add up to approximately $2.7 million.

Atlanta .gov ransomware attack costs pic.twitter.com/xgQEpbeZPZ (https://t.co/xgQEpbeZPZ)
— Ryan Naraine (@ryanaraine) April 23, 2018 (https://twitter.com/ryanaraine/status/988451098879967234?ref_src=twsrc%5Etfw)
It's unclear whether Atlanta paid or tried to pay the ransom (https://www.engadget.com/2017/08/02/ransomware-attacks-most-affect-small-businesses/), but evidence suggests city officials didn't attempt to or were unsuccessful. The affected services are still not fully up and running (https://www.atl311.com/?p=1774) and ahead of the ransom deadline, the attackers took down the communication portal (https://www.csoonline.com/article/3266364/security/samsam-group-deletes-atlantas-contact-portal-after-the-address-goes-public.html) that would have been used to pay the fee.

More at: https://finance.yahoo.com/news/atlanta-spends-more-2-million-202000413.html

It would've been cheaper to pay the ransom.

How does this happen? Is it because some idiot responds to a Russian Single or Nigerian Prince e-mail?:confused:


Cities under siege and all of their citizen's data held for ransom.

Last month, hackers crippled the city of Atlanta, taking control of computer servers and knocking out public services.

Hackers demanded $51,000 in bitcoin from the city. The city refused to pay, but shelled out $2.6 million to recover. Weeks later, Baltimore was also targeted.

The FBI said ransomware attacks are on the rise.

“People are becoming more and more savvy about how to extort this money,” said Netragard CEO Adriel Desautels.

Desautels is a former hacker turned CEO of computer security firm Netragard.

He said all it takes is one city employee to click on a phishing email and a central server is attacked, locking all of the data.

https://www.wsbtv.com/news/local/cities-under-siege-hackers-holding-data-and-services-for-ransom/745312544

It would've been cheaper to pay the ransom.

How does this happen? Is it because some idiot responds to a Russian Single or Nigerian Prince e-mail?:confused:

The ransomware extortionists are undocumented tax collectors. The massive amounts of money spent to fight them is justified as competition is bad for business.

The effects (https://www.engadget.com/2018/04/23/atlanta-spends-over-2-million-ransomware-recovery/) of the ransomware attack (https://www.engadget.com/2018/03/23/atlanta-government-computers-hit-by-ransomware/) against Atlanta's government were much worse than it seemed at first glance. To start, city Information Management head Daphney Rackley revealed (https://www.reuters.com/article/us-usa-cyber-atlanta-budget/atlanta-officials-reveal-worsening-effects-of-cyber-attack-idUSKCN1J231M?feedType=RSS&feedName=technologyNews) at a meeting that more than a third of Atlanta's 424 necessary programs were knocked offline or partly disabled, and close to 30 percent of those affected apps were "mission critical" -- that is, vital elements like the court system and police. The government initially reckoned that essential programs were safe.




Department leaders had elaborated on the damage earlier in the week. The City Attorney's office lost all but six of its 77 computers and 10 years' worth of documents, while the police lost their dash cam recordings.
Crucially, the cost of cleaning up the attack is likely to balloon as well. Rackley estimated that Atlanta would need another $9.5 million in the next year to recover, or well past the $2 million it had spent as of April. There's a good chance the figures could keep growing, too. Deputy CFO John Gaffney warned that the city was still in the "response phase" and had yet to determine the final costs. While Atlanta may have avoiding paying the initial ransom, it could spend a long, long time dealing with the aftermath of its no-compromise approach.





https://www.engadget.com/2018/06/06/atlanta-ransomware-attack-struck-mission-critical-services/

I smell conspiracy, I wonder who wanted what destroyed.

Can’t money be tracked? If they pay the ransom can’t the highest levels of law enforcement chase it? Isn’t that a legitimate purpose of having all this police state?

Instead they opt to spend 10s of millions letting all those docs disappear. I’m like the OP. Definitely some people in Atlanta breathing easier.

I love this news story! This is fantastic. Hope it becomes a trend. Then a deluge. Then a fact of life.


How does this happen?

A ten million story building designed like an amoeba and built out of mud, with outdoor decks on every floor...



https://render.fineartamerica.com/images/rendered/search/print/images-medium-5/amoeba-senescent-carol-jacobs.jpg


https://previews.123rf.com/images/shottythefirst/shottythefirst1512/shottythefirst151200077/50224298-very-bizarre-and-chaotic-clutter-modern-abstract-art-full-frame-creation-crazed-delirium-pic-dirty-c.jpg




...will always have some open doors.