The city of Columbus, the capital of Ohio, confirmed that hackers stole the personal data of 500,000 residents in a ransomware attack in July.
The City of Columbus said in a filing with the Maine Attorney General that a “foreign cyberattacker” compromised the city's network and stole residents' names, dates of birth, addresses, identification documents, social security numbers, and bank accounts. admitted to having accessed information such as details of
Ohio's most populous city, home to about 900,000 people, has not confirmed the exact number of casualties, but said about 500,000 people were affected.
The regulatory filing comes after the city of Columbus became the target of a ransomware attack on July 18 of this year, in which the city said it was able to thwart the ransomware attack by disconnecting its network from the internet. “I prevented it,” he claims.
Ricida, the ransomware gang behind last year's British Library cyberattack, claimed responsibility for the attack on Columbus in August. At the time, the criminal organization announced it had stolen 6.5 terabytes of data from the Ohio city, including “a complete dump of servers with databases, internal employee logins and passwords, and the city's emergency services applications.” , …accessed by city video cameras,'' local news reported.
Rishida demanded 30 Bitcoins, or about $1.9 million at the time of the cyberattack, as payment for the stolen data.
Two weeks after the cyberattack, Columbus Mayor Andrew Ginther told the public that the stolen data was “corrupt” and likely “unusable.”
Ginther's comments come a day after cybersecurity researcher David LeRoy Ross, also known as Connor Goodwolf, revealed that the personal information of hundreds of thousands of Columbus residents had been listed on the dark web. The accuracy was questioned.
In September, the City of Columbus sued the City of Ross for “threatening to share the City's stolen data with third parties that did not have the means to readily obtain the City's stolen data.” insisted. A judge applied for a temporary restraining order against Ross, barring him from accessing the stolen data.
In a list of leaked sites seen by TechCrunch on Monday, Rhysida claims to have uploaded 3.1 terabytes of “unsold” data stolen from Columbus, or more than 250,000 files.