Tag Archive for: city

Dallas City Council approves $8.6 million in payments for ransomware attack response

/in


The Dallas City Council on Wednesday approved nearly $8.6 million in payments for services related to the ransomware attack earlier this year, including credit monitoring for potential identity theft victims.

The council asked no questions about the payments before unanimously approving the agenda item. The names of the vendors receiving the money, how much each vendor is getting, and what specific services were provided were not laid out in any publicly available documents. A list of what the money is being set aside for was provided to The Dallas Morning News by Deputy City Manager Jon Fortune after the council meeting.

Fortune told the council during the meeting that the city mailed about 27,000 letters starting last week notifying mostly current and former employees, such as retirees, that their data was exposed and that the city is offering credit monitoring because of it.

The $8.6 million is coming from two different city reserve funds to pay invoices to vendors for new hardware, software, consultants, monitoring and other professional services described as emergency purchases made because of the cyberattack, according to city documents.

Politics

Political Points

Get the latest politics news from North Texas and beyond.

According to the city, the money is going toward:

– New storage devices, servers, laptops, desktop computers and mobile dispatch computers for police and fire vehicles to replace ones that were compromised or damaged in the ransomware attack.

– Temporary staff who aided in the city’s recovery efforts.

– Credit monitoring services, identity protection, call center and notification support.

– Forensic accounting.

– Recovery and restoration services for city applications and systems.

– Installation for new hardware and equipment.

– New and additional software licenses to enhance the city’s cybersecurity, response and recovery efforts.

The city is planning to file insurance claims and put any reimbursement received into its general fund contingency reserve, which is 65% of the funding source for these invoice payments. The rest is from the city’s liability reserve fund.

The payment approval comes three months after the city announced being hit with a ransomware attack on May 3.

It…

Source…

Children among 26,000 people impacted by Dallas ransomware attack, city employee says

/in


DALLAS (CBSNewsTexas.com) — On Tuesday, the City of Dallas disclosed that over 26,000 people were affected by a ransomware attack that occurred three months ago.

In early May, hackers accessed names, addresses, medical data and other information through city government servers. 

A group called “Royal” later claimed they encrypted the city’s critical data and threatened to post sensitive information online. Their alleged cyber intrusion also impacted 911 dispatch services for police and fire departments, municipal courts, water utilities and other services.

An image of the ransomware note obtained by J.D. Miles

City of Dallas


As a whole, 26,212 people were affected. And CBS News Texas has since learned that some city employees are already reporting identity theft. What’s more is that some of their children have also had their personal information stolen.

“Unfortunately, it was what I expected,” said Dallas Fire Fighters Association President Jim McDade. “That’s why I took out the identity theft protection back in May.”

McDade—whose personal information was also compromised—said his 1,500 members have been outraged at what they believe has been a sluggish response by the city.

On top of that, he said his 10-year-old son and the children and spouses of other city employees have had their information stolen, too.

Cyber security expert Andrew Sternke said if children have been victimized, it can haunt them into adulthood.

“This information is released out onto the dark web to be sold,” Sternke said. “When that kid turns 18, it’s a free-for-all and that’s another concerning aspect: that it’s not just the adults we have to worry about.”

Those concerns prompted the city to release a statement defending the time it took to report its findings…

Source…

Hayward City Council to discuss ransomware attack

/in


Bay City News and Michael Thomas

(BCN) — The Hayward City Council will hold a special meeting Thursday night to ratify a proclamation of a local emergency made Sunday after a ransomware attack breached the city’s computer systems and networks over the weekend.

Hayward is continuing to “assess and recover” from the cybersecurity event that occurred early Sunday morning in which “intruders attempted to disrupt and hold hostage aspects and components of our computer systems and networks,” the city said.

A ransomware attack occurs when someone encrypts files and demands ransom to decrypt them. The encryption makes the files and the systems that rely on them unusable, according to the U.S. Cybersecurity and Infrastructure Security Agency.

Thursday’s meeting is at 7 p.m. and will be in-person only at council chambers, located in Hayward City Hall, 777 B Street, conference room 2A.

By declaring an emergency, the city has greater flexibility in executive decision-making and deployment of city employees, and can access and acquire equipment, supplies and other resources needed, the city said Wednesday. The declaration also can “be a prerequisite to and streamline” reimbursement of certain costs associated with the response, according to the city manager.

Public access to the City of Hayward’s website was mostly restored Tuesday, but aspects of the city’s site are still being gradually restored, the city said, and visitors to the site who encounter non-functioning links are encouraged to report them at [email protected].

Hayward’s emergency numbers and systems were never affected, the city said, nor were water, sewer, or other municipal operations.

“To date, we have found no evidence of a breach or theft of private personal or confidential information related to any current or former City employee, community member or other member of the public,” said the city. “If that were to change, the City will contact the affected individual or individuals directly.”

KRON On is streaming news live…

Source…

After ransomware attack, Dallas City Council approves ‘threat and anomaly detection system’

/in


Almost two months after a ransomware attack disrupted City of Dallas online services, council members voted to approve a multi-million-dollar contract for upgraded cybersecurity software.

Council members approved the $3.9 million measure without comment. The agreement between the city and Texas based IT consulting group Netsync, was tucked away in the council’s lengthy consent agenda.

The contract authorizes the city manager to pay Netsync immediately after council approval. Council members also discussed the ongoing ransomware attack that started in early May, among other issues, in executive session during Wednesday’s meeting.

There was no public discussion of the agreement during Wednesday’s meeting, but according to the approved item, the funds are for support of a threat and anomaly detection system for” the city’s IT department.

On May 3, the city was hit by the hacker group Royal, which impacted a number of city systems. Those included the Dallas Police Department, Dallas Fire Rescue, 911 and 311 — the city’s nonemergency service.

Other city services brought down as a result of the attack were the Dallas Water Utilities department, the municipal court building and the public library system. For the duration of the attack — which the city is still recovering from — officials maintained that there was “no indication that customer information…has been leaked from City systems.”

The assurances came after the hacker group posted a message on their blog threatening the release of “tons of personal information of employees (phones, addresses, credit cards, SSNs, passports)…” the post said.

The Federal Bureau of Investigation and the Cybersecurity and Infrastructure Security Agency released a warning about the Royal hacker group in early March.

Got a tip? Email Nathan Collins at [email protected]. You can follow Nathan on Twitter @nathannotforyou.

KERA News is made possible through the generosity of our members. If you find this reporting valuable, consider making a tax-deductible gift today. Thank you.

Source…