Friday, February 28, 2020
  • Security Priorities & Automation Ascend to Business Relevancy per New KPMG Cybersecurity Report
  • DEF CON 27, Artificial Intelligence Village – Siwei Lyu’s ‘Seeing Is Deceiving: The Rise Of AI Synthesized Fake Media’
  • Survey Results: How Organizations Can Foster a Culture of Ethics and Compliance
  • ‘TikTok is Spyware,’ Warns Reddit CEO. ‘We Don’t Care,’ Say Users
  • FIN7 Targets New Windows 10 Functionality

Security Boulevard

The Home of the Security Bloggers Network

Community Chats Webinars Library
  • Home
    • Cybersecurity News
    • Features
    • Industry Spotlight
    • News Releases
  • Security Bloggers Network
    • Latest Posts
    • Contributors
    • Syndicate Your Blog
    • Write for Security Boulevard
  • Webinars
    • Upcoming
    • On-Demand
  • Chat
    • Security Boulevard Chat
    • Marketing InSecurity Podcast
  • Library
  • Related Sites
    • MediaOps Inc.
    • DevOps.com
    • Container Journal
    • Digital Anarchist
    • SweetCode.io
  • Media Kit

  • Analytics
  • AppSec
  • CISO
  • Cloud
  • DevOps
  • GRC
  • Identity
  • Incident Response
  • IoT / ICS
  • Threats / Breaches
  • More
    • Blockchain / Digital Currencies
    • Careers
    • Cyberlaw
    • Mobile
    • Social Engineering
  • Humor
Data Security Malware Security Bloggers Network 

Home » Cybersecurity » Data Security » RobbinHood ransomware attack brings down parts of City of Baltimore’s computer network

RobbinHood ransomware attack brings down parts of City of Baltimore’s computer network

by Graham Cluley on May 9, 2019

For the second time in a year, Baltimore city government computers have been infected by ransomware. Malicious hackers are demanding that a ransom is paid for the safe recovery of encrypted files on affected computers and servers.

On Tuesday, Mayor Bernard C. “Jack” Young tweeted how the city had “shut down the majority of its servers” out of “an abundance of caution,” but that the city’s core essential services (such as police and fire brigades) remained operational.

However, the email systems used by municipal employees, phone lines and online bill payments were impacted by the attack.

Amongst those workers affected were Baltimore’s Department of Public Works (DPW) who reported that their customer support line was unable to take calls due to its network being down, and was suspending customers’ late water bill fees as it was unable to accept payments other than those delivered via cheque or money order.

According to Mayor Young, the City of Baltimore had seen no evidence that any personal data had been exfiltrated from the compromised computers. That’s normal with ransomware – the attackers are typically not interested in the content of the files and documents that you store on your network of computers – they simply want to deny you your access to them.

Frank Johnson, Baltimore’s Chief Information Officer, confirmed in a press conference streamed via Facebook that the offending malware was the “very aggressive RobbinHood ransomware”, and specifically that the FBI had identified it as a “fairly new variant.”

It’s unclear whether the variant of the RobbinHood malware is the same as that which hit the network of the city of Greenville, North Carolina, last month. In that incident, the city was forced to shut down the majority of its servers – although similarly police and fire emergency communications were not (Read more...)

*** This is a Security Bloggers Network syndicated blog from The State of Security authored by Graham Cluley. Read the original post at: https://www.tripwire.com/state-of-security/featured/ransomware-baltimore-network/

May 9, 2019May 9, 2019 Graham Cluley Featured Articles, IT Security and Data Protection, Malware, Ransomware, RobbinHood
  • ← Matrix 1: CTF walkthrough
  • Threat hunting with Graylog →

Subscribe to our Newsletters

Get breaking news, free eBooks and upcoming events delivered to your inbox.
  • View Security Boulevard Privacy Policy

Most Read on the Boulevard

Apple Goes Rogue, Drops Unilateral TLS Certificate Guillotine
Election Security a 2020 Myth?
RSA Conference 2020: The Human Element is Alive and Well
Personal Data Collection: Outsourcing Surveillance
Cisco Looks to Unify Cybersecurity Management
S3 Bucket Ransomware Attack: What Is It and How Can It Happen?
Cybersecurity Threats for 2020
Time to Tighten Up Cybersecurity to Fight Tax Fraud
Inserting security in pull requests — in a developer friendly way
Google Docs Forms Abused by Phishers to Harvest Microsoft Credentials

Upcoming Webinars

Mar 04

Shift Application Security Knowledge Left to Deliver Secure Code On Time

March 4 @ 11:00 am - 12:00 pm
Mar 09

Best Practices to Secure Containerized Apps with Next-Gen WAF

March 9 @ 1:00 pm - 2:00 pm
Mar 19

Securing APIs at DevOps Speed

March 19 @ 1:00 pm - 2:00 pm
Mar 23

The State of Open Source Security

March 23 @ 1:00 pm - 2:00 pm

More Webinars

Download Free eBook

Developers Are Taking Over AppSec

Recent Security Boulevard Chats

  • Cloud, DevSecOps and Network Security, All Together?
  • Security-as-Code with Tim Jefferson, Barracuda Networks
  • ASRTM with Rohit Sethi, Security Compass
  • Deception: Art or Science, Ofer Israeli, Illusive Networks
  • Tips to Secure IoT and Connected Systems w/ DigiCert

Industry Spotlight

Meeting Trusted Data Privacy Compliance
Cybersecurity Data Security Industry Spotlight Security Boulevard (Original) 

Meeting Trusted Data Privacy Compliance

February 28, 2020 Doug Wick | 15 hours ago 0
How IT Ops Can Maintain Security and Agility in a Hybrid Cloud World
Cloud Security Cybersecurity Industry Spotlight Security Boulevard (Original) 

How IT Ops Can Maintain Security and Agility in a Hybrid Cloud World

February 27, 2020 Grant Ho | Yesterday 0
Making the Move to Multifactor Authentication
Cybersecurity Identity & Access Industry Spotlight Security Boulevard (Original) 

Making the Move to Multifactor Authentication

February 26, 2020 Patrick Kinsella | 2 days ago 0

Top Stories

‘TikTok is Spyware,’ Warns Reddit CEO. ‘We Don’t Care,’ Say Users
Application Security Cybersecurity Endpoint Featured Mobile Security News Popular Post Security Boulevard (Original) Spotlight 

‘TikTok is Spyware,’ Warns Reddit CEO. ‘We Don’t Care,’ Say Users

February 28, 2020 Richi Jennings | 4 hours ago 0
Report: Attacks on Financial Services Targeting APIs
Analytics & Intelligence Cybersecurity Featured News Security Boulevard (Original) Spotlight Threat Intelligence Threats & Breaches 

Report: Attacks on Financial Services Targeting APIs

February 28, 2020 Michael Vizard | 5 hours ago 0
Clearview, a Startup Probably Holding Your Image, Gets Hacked
Cloud Security Cybersecurity Data Security Featured Identity & Access Incident Response News Security Boulevard (Original) Spotlight Threats & Breaches Vulnerabilities 

Clearview, a Startup Probably Holding Your Image, Gets Hacked

February 27, 2020 Richi Jennings | Yesterday 0

Security Humor

via the eponymous Daniel Stori at turnoff.us

Daniel Stori ‘The Naive Engineer’

Join the Community

  • Add your blog to Security Bloggers Network
  • Write for Security Boulevard
  • Bloggers Meetup and Awards
  • Ask a Question
  • Email: info@securityboulevard.com

Useful Links

  • About
  • Media Kit
  • Sponsors Info
  • Copyright
  • TOS
  • Privacy Policy
  • DMCA Compliance Statement

Other Mediaops Sites

  • Container Journal
  • DevOps.com
  • DevOps Connect
  • DevOps Institute
Copyright © 2020 MediaOps Inc. All rights reserved.

Our website uses cookies. By continuing to browse the website you are agreeing to our use of cookies. For more information on how we use cookies and how you can disable them, please read our Privacy Policy.