2019 Baltimore ransomware attack

On May 7th 2019, most of the Baltimore's systems were infected with a new and aggressive ransomware variant named RobbinHood. All servers, with the exception essential services, were taken offline. In a ransom note, hackers demanded 13 bitcoin (roughly $76,280) in exchange for keys to restore access. The note also stated that if the demands were not met within 4 days, the price would increase and within 10 the city would permanently lose all of the data. ^[1]^[2]^[3]^[4]^[5]^[6]^[7]

As of May 13, 2019^[update] all systems remained down for city employees. It is estimated that it will take weeks to recover. According to Mayor Jack Young US Federal Law enforcement continue to investigate the attack.^[8]

The attack had a negative impact on the real estate market as transfers could not be completed until the system was restored on May 20th.^[9] However, all systems being restored was, as of May 20, 2019^[update], estimated to take weeks more.^[10]

Baltimore was susceptible to such an attack due to its IT practices, which included decentralized control of its technology budget and a failure to allocate money its information security manager wanted to fund cyberattack insurance.^[10]

References

^ "A ransomware attack is holding Baltimore's networks hostage". Engadget.
^ Song, Victoria. "Baltimore's Government Held Hostage by Ransomware Attack". Gizmodo.
^ Gallagher, Sean (May 8, 2019). ""RobbinHood" ransomware takes down Baltimore City government networks". Ars Technica.
^ https://www.nytimes.com/2019/05/22/us/baltimore-ransomware.html
^ https://www.theverge.com/2019/5/25/18639859/baltimore-city-computer-systems-cyberattack-nsa-eternalblue-wannacry-notpetya-cybersecurity
^ https://www.bbc.com/news/technology-48423954
^ https://baltimorebrew.com/2019/05/26/microsoft-sounded-alarm-two-years-ago-about-nsa-hacking-tool-that-reportedly-hit-baltimore/
^ Melser, Lowell (May 13, 2019). "Six days later, Baltimore government is still recovering from ransomware attack". WBAL.
^ Stewart, Emily (May 21, 2019). "Hackers have been holding the city of Baltimore's computers hostage for 2 weeks". Vox. Retrieved May 21, 2019.
^ ^a ^b Gallagher, Sean (May 20, 2019). "Baltimore ransomware nightmare could last weeks more, with big consequences". Ars Technica. Retrieved May 21, 2019.

[1] "A ransomware attack is holding Baltimore's networks hostage". Engadget.

[2] Song, Victoria. "Baltimore's Government Held Hostage by Ransomware Attack". Gizmodo.

[3] Gallagher, Sean (May 8, 2019). ""RobbinHood" ransomware takes down Baltimore City government networks". Ars Technica.

[4] ttps://www.nytimes.com/2019/05/22/us/baltimore-ransomware.html

[5] ttps://www.theverge.com/2019/5/25/18639859/baltimore-city-computer-systems-cyberattack-nsa-eternalblue-wannacry-notpetya-cybersecurity

[6] ttps://www.bbc.com/news/technology-48423954

[7] ttps://baltimorebrew.com/2019/05/26/microsoft-sounded-alarm-two-years-ago-about-nsa-hacking-tool-that-reportedly-hit-baltimore/

[8] Melser, Lowell (May 13, 2019). "Six days later, Baltimore government is still recovering from ransomware attack". WBAL.

[9] Stewart, Emily (May 21, 2019). "Hackers have been holding the city of Baltimore's computers hostage for 2 weeks". Vox. Retrieved May 21, 2019.

[:0-10] Gallagher, Sean (May 20, 2019). "Baltimore ransomware nightmare could last weeks more, with big consequences". Ars Technica. Retrieved May 21, 2019.

[1]

[2]

[3]

[4]

[5]

[6]

[7]

[8]

[9]

[10]