Hackers managed to shut down the city of Baltimore since early May. Shut down means shut down - no email service, water payment collections, or other critical functions of city government. The city didn't download a 2017 Microsoft patch and is now paying the price for such negligence. The New York Times reported on May 22:
More than two weeks ago, hackers seized parts of the of the computer systems that run Baltimore’s government.
It could take months of work to get the disrupted technology back online. That, or the city could give in to the hackers’ ransom demands.
“Right now, I say no,” Mayor Bernard Young told local reporters on Monday. “But in order to move the city forward? I might think about it. But I have not made a decision yet.”...
On May 7, the city discovered that it was a victim of a ransomware attack, in which critical files are encrypted remotely until a ransom is paid.
The city immediately notified the F.B.I. and took systems offline to keep the ransomware from spreading, but not before it took down voice mail, email, a parking fines database, and a system used to pay water bills, property taxes and vehicle citations.
At least 1,500 pending home sales have been delayed, too, according to a letter from a group of congressional lawmakers in Maryland requesting information on the attack from the directors of the F.B.I. and the Secret Service....
A copy of a digital ransom note, obtained by The Baltimore Sun, stated that the city could unlock the seized files for a price: three Bitcoins (nearly $24,000) per system or 13 Bitcoins (about $102,000) for them all.
(The price of this decentralized, hard-to-track virtual currency fluctuates wildly. On the day of the attack, the ransom would have cost about $17,000 per system, or less than $75,000 for them all.)
“We won’t talk more, all we know is MONEY!” the note said.... Rest of article.
However, Baltimore bears a great deal of responsibility for this disaster. Microsoft issued a patch in 2017 to fix the exploit yet the city never downloaded the update. Fortune's Robert Hackett pointed a finger a Baltimore:
A story published by the The New York Times last weekend claiming the U.S. National Security Agency is partly responsible for helping to spread the computer-seizing digital infection. The report alleges that hackers used malware, dubbed RobbinHood, paired with EternalBlue, a powerful, self-propagating hacking tool allegedly developed by the NSA to target (now outdated) Microsoft Windows software. The code behind EternalBlue leaked online at the hands of a mysterious, still-unknown entity called the ShadowBrokers in 2017, and nation state actors have used the weapon to launch destructive cyberattacks—including North Korea’s WannaCry and Russia’s NotPetya—costing billions of dollars in damages for businesses and governments around the globe...Government systems are apparently easy prey for these attacks as they usually are composed of outdated systems slapped together. That wouldn't be the case around here, would it?
If EternalBlue truly was key to the Baltimore attack, as the Times initially reported, then it would appear that Baltimore had for years failed to update its computer systems to defend against a known, critical vulnerability. Microsoft released a patch in 2017; the exploit works on machines running Windows software that’s two years out of date. The harsh truth: Baltimore should have been better prepared.
Keeping IT systems up to date and secured is easier said than done, of course. Government offices are perennially resource-strapped and impoverished of tech expertise, struggling to get by on dated equipment. (I used to work in local government—trust me.) And another point to consider: Even if the NSA is not to blame for Baltimore’s debacle, that still does not absolve the agency of its prior negligence. It’s unclear how the spooks lost control of their bag of cyber tricks, including EternalBlue, a couple years ago, let alone the identities of the thieves that call themselves the ShadowBrokers.
As we ponder these questions and wait for Baltimore to release more details about its thwomping, a recommendation: For the love of all that’s holy, please patch this other critical, wormable Windows security hole. Microsoft released a patch for the bug, dubbed BlueKeep, on May 14th, but as of two weeks later 900,000 computers still appear to remain vulnerable, by Wired’s count. If you need a reason to act with celerity, just look at Baltimore. Article
23 comments:
They can't hack a city water system that is managed with 3x5 cards.
Baltimore is a blue city. 'nuf said. Watch "The Wire" to learn more.
They could cripple Jackson. I'd bet they don't have the updates or the encryption to keep an attack from happening, and they damn sure don't have the money to pay the ransom.
Baltimore, another one of those "radical" cities, and other similarities to Jacksonistan.
Windows 7 end of life is just a few months away. Microsoft just released a patch for a vulnerability so bad that they even developed and released a patch for Windows XP and Vista.
Those of you out there with old computers and a lot of fears should consider a great free operating called Mint which is very easy to install and use and is updated regularly and as easily as Windows.
Another alternative is to just get a Mac. I hear they are good for like, creative people and stuff.
I don’t want to shock anyone but it doesn’t have to be a blue city to suffer an attack. Any city, utilities or voting machine can be hacked. If a war starts don’t be concerned about Nukes, the cyber attack will be much worse.
@12:23 PM - I believe that you are referring to "Linux Mint," not "Mint," but good suggestion.
www.linuxmint.com
12:39 point taken but still I'd rather be "cyber hacked" than have a nuke dropped on my head any day.
One party rule.
@1:04
BUT if are nuked I'd rather the first one hit me right square on my head !
It's past time for our state and national government to take economic cyber security seriously as a number one priority. On the local and state level prison terms at least commensurate with violent crimes, and internationally, stiff sanctions for any nation harboring these criminals. This ransom stuff is the very tip of a dangerous iceberg which could cripple any nation's economy. Ten years from now these hackers could control our economy like the cartels control our borders.
12:11 You really think only cities like Baltimore and Jackson are vulnerable to this stuff? Are you serious?
@2:21 PM
The State of Mississippi Information Techology Services (ITS) has top graduates of Jackson State University on the job. Bet you didn't know JSU even had an Cyber Security program? Some of them even know how to use SSH and nmap.
The problem is that your average state employee doesnt know the wifi from the hifi.
Anybody want a great (and sobering) read? Check out Ted Koeppel's "Lights Out".
Q: How likely is an attack on just one of our power grids?
Ted Koppel: Very. When I posed that question to former Secretary of Homeland Security Janet Napolitano, she put the likelihood at 80 or 90 percent. General Lloyd Austin, who currently heads up the U.S. military’s Central Command, told me that it’s not a question of “if, but of when.” Former Defense Secretary Leon Panetta has warned of a cyber Pearl Harbor, and President Obama highlighted the threat to our power grid in his 2013 State of the Union address. In short, government and military leaders think it’s likely, and I found no compelling evidence to the contrary.
This country runs on electricity. Everything. No electricity for a year in 5 states? 80 Million without access to their bank accounts, cell phone communication, no household water or sewage disposal, no heat/air-conditioning for a YEAR?.....major, out of control disaster within a week/s time. Riveting, real, and is being predicted.....but their Is. No. Plan. Because there's nothing we could do.
Same people in charge of protecting our government and financial networks and databases and systems are the same people in charge of our roads and bridges and PERS and Social Security.
I think the Mormons are the only ones who will be ready. You are gonna need a huge pantry if we ever get in a war with Russia or China. They won't have to fire one nuke.
4:05 We don't want to hear about it and we don't want to think about it. It's just another big government expense our grandkids can pay when it all goes bad. Any politician who dares bring that hot potato to the table will get run out of town. Forget about it!
Coming to a city near you. Hint: Jackistan
Security by obscurity (and incompetence). Who in the hell would waste their time hacking any MS municipality or state government agency? The quality of data stolen would be so bad it would be unusable anyway.
Jackson was hacked and shut down for about 3 weeks.
C-L refused to run a story.
Sad.
@9:44 PM You obviously didn't read the story. It's RANSOMEWARE! They lock out the owners of their own computer system unless .... wait for it....a RANSOM is paid via Bitcoins.
Try to keep up.
City of Jackson needs to hire a consultancy to investigate their cyber infrastructure vulterabilities as well as the feasibility of investment in blockchains to facilitate the payments of any ransoms with cryptocurrencies going forward.
Minority owned firms need only apply for this special set aside endeavor.
Soon we will se the birth og Geto-coin.
It seems to me that some people in this vicinity can read the contents of a can of soup and conclude that the City of Jackson is the worst hellhole in
the universe. Isn't there some looming crisis not directly related to the disaster of Jackson?
I'm waiting for an attack on a small city like Tupelo or Greenville. Like you can't hide from this threat anywhere. Mayberry could come crashing down.
Post a Comment