City of Columbus Ransomware Attack Impacts 500,000 People

Share This Post

The City of Columbus, Ohio, is notifying 500,000 individuals that their personal information was stolen in a July 2024 ransomware attack.

The incident occurred on July 18 and resulted in the city taking systems offline as a containment measure, which impacted multiple services.

In late July, the city announced that the attack was stopped before file-encrypting ransomware could be deployed on its systems.

In early August, the city sued security researcher David Leroy Ross, also known as Connor Goodwolf, for telling the local media that the personal information of residents was stolen during the attack. The city’s officials previously said that only corrupted, unusable data had been exfiltrated.

Ross discovered that the Rhysida ransomware gang had leaked on its Tor-based website 3.1 terabytes of information supposedly exfiltrated from Columbus’ systems. The group claimed the theft of 6.5 terabytes of data and leaked the information after failing to extort the city and to auction the data.

In its notification letter to the impacted individuals, a copy of which was submitted to the Maine Attorney General’s Office, the city has confirmed that the perpetrators posted on the dark web an abundance of allegedly stolen data.

The potentially compromised information, Columbus says, includes names, addresses, dates of birth, bank account information, driver’s license information, Social Security numbers, and other identifying information.

Columbus notes that it is not aware of any misuse of the compromised personal information for identity theft or fraud, but is providing the potentially impacted individuals with 24 months of free credit monitoring services, which include identity restoration assistance.

Advertisement. Scroll to continue reading.

The City of Columbus told the Maine AGO that 500,000 people might have been affected. The capital of Ohio and the most populous city in the state, Columbus is home to over 900,000 people.

Related: In Other News: FBI’s Ransomware Disruptions, Recall Delayed Again, CrowdStrike Responds to Bloomberg Article

Related: Four REvil Ransomware Group Members Sentenced to Prison in Russia

Related: Avast Releases Free Decryptor for Mallox Ransomware

Related: Fujifilm Restores Services Following Ransomware Attack

This post was originally published on this site

More Articles
Article

Navigating SEC Regulations In Cybersecurity And Incident Response

Free video resource for cybersecurity professionals. As 2024 approaches, we all know how vital it is to keep up to date with regulatory changes that affect our work. We get it – it’s a lot to juggle, especially when you’re in the trenches working on an investigation, handling, and responding to incidents.

Report

Harassment or bullying behavior
Contains mature or sensitive content
Contains misleading or false information
Contains abusive or derogatory content
Contains spam, fake content or potential malware

Block Member?

Please confirm you want to block this member.

You will no longer be able to:

  • See blocked member's posts
  • Mention this member in posts
  • Invite this member to groups
  • Message this member
  • Add this member as a connection

Please note: This action will also remove this member from your connections and send a report to the site admin. Please allow a few minutes for this process to complete.

Report

You have already reported this .