Ransomware attack on rural Mississippi county a ‘cautionary tale’

/in


A cyber attack on the government computer system in George County, Miss., is a “cautionary tale” for all other small town and rural government agencies, a county official said this week.

The attacks began, unknown to officials until after the fact, last Friday, when numerous “test attacks” on the county’s systems began, according to Communications Director Ken Flanagan.

Saturday, what IT professionals labeled a “brute force attack” began on all entry points into the county’s system. At some point Sunday, an employee received an email and clicked on an enclosed link.

“The email itself was extremely professional looking,” Flanagan said. “It looked like a legitimate ‘time to update your system’ email. It was spot on with graphics, color schemes, font, the whole bit.”

Once the ransomware entered the county system, it made it’s way up what Flanagan described as the “administrative food chain” until it gained access to one of the county’s three servers.

“Once it was inside the server, it was game over,” he said.

The hackers demanded payment to remove the software encryption, with payment in the form of cryptocurrency. Flanagan said Homeland Security investigators have told them to not disclose the amount, but Flanagan did say it was a “noteworthy amount.”

“Our board of supervisors were against (paying) just on principle,” he said, “but once we found the amount, it ended all discussion.”

Flanagan said they and investigators believe the hackers thought George County was a much larger government entity, based on the amount they were seeking, rather than the rural county of less than 25,000 residents.

George County supervisors declared a local emergency (not be to confused with a state of emergency), which allowed them to immediately contract with IT professionals rather than go through the normal state-required bidding process.

“It we’d have had to go get three quotes and go through that whole process, it’d have been a disaster,” Flanagan said.

As it was, the entire county system was shut down for more than two days, with officials at one point having to refresh themselves on how to do the proper accounting to issue handwritten, paper…

Source…