January 17, 2020

Security Lessons from Across the Pond: Local Government Ransomware Attacks

1 min. read

EMEA's mainstream media's spotlight on ransomware attacks may have dimmed over the last 18 months but that doesn't mean the threat has disappeared. There is certainly no room for complacency, and we would do well to pay attention to recent events across the pond.

Far from diminishing in disruptive impact, ransomware attacks appear to have gained a new level of strategic precision, including a spate of public sector organisations being taken offline. Schools, municipalities, and government agencies have all been hit. The US Department of Homeland Security Cybersecurity and Infrastructure Security Agency (DHS CISA) has now cited ransomware as "the most visible cybersecurity risk" attacking American IT systems.

This level of "visibility" is, in part, because a single, one-time infection originating from a user with high-level privileges can disable thousands of servers and cause weeks of disruption for millions. A recent incident with the Baltimore City government vividly illustrates the consequences: two weeks of crippled systems and a ransom of $100,000 to cough up. Elsewhere, more than 20 local governments in Texas have been targeted in a similarly effective and coordinated attack back in August.

A pattern is emerging, and rest assured it won't be constrained by geographical boundaries.

Read the full article published January 2, 2020 here: by IDG Connect.

Join the Discussion


Expertly picked stories on threat intelligence

Hundreds of apps will be attacked by the time you read this.

So, we get to work. We obsess over effective attack methods. We monitor the growth of IoT and its evolving threats. We dive deep into the latest crypto-mining campaigns. We analyze banking Trojan targets. We dissect exploits. We hunt for the latest malware. And then our team of experts share it all with you. For more than 20 years, F5 has been leading the app delivery space. With our experience, we are passionate about educating the security community-providing the intel you need to stay informed so your apps can stay safe.


9 hrs

a critical vulnerability—with the potential for remote code execution—is released.