Select Page

Atlanta, hit by ransomware attack, also fell victim to leaked NSA exploits

It’s been almost a week since the City of Atlanta was hit by a ransomware attack, which encrypted city data and led to the shutdown of some services.

Mayor Keisha Lance Bottoms said in a press conference Monday that the city’s government is working on recovering the network after ransom notes appeared on computer displays on Thursday afternoon. The city has hired local cybersecurity firm SecureWorks to assess the situation.

Reports say the notorious SamSam ransomware was used in the Atlanta attack, which exploits a deserialization vulnerability in Java-based servers. Details of the attack remain largely unknown, but an early investigation may have identified who is behind the attack, said SecureWorks chief executive Michael Cote. Almost a million dollars has been reaped from other businesses that were infected and paid the ransom. It’s not known if Atlanta will pay the ransom.

Weekly Security Update Subscription

Weekly Security Update Subscription

If you use a computer, you need up-to-date security information. Craig has been providing eSecurity consulting for more than 20 years, and now runs the FBI's InfraGard webinars. There isn't a better source to keep you up-to-date with the latest, most important tips and warnings to keep your computers and network safe.

Join the hundreds of thousands of people who get the most important weekly eSecurity information from Craig every month. It's free, it's easy and I never SPAM.

Keep an eye on your email box every Saturday morning around 9 am Eastern Time for your weekly newsletter. Add me@craigpeterson.com to your whitelist if it doesn't show up.