DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

More police departments acknowledge paying ransom to unlock their systems

Posted on April 10, 2015 by Dissent

And yet more police departments pay ransom to unlock their systems. WCSH in Maine reports:

Lincoln County Sheriff Todd Brackett said four towns and the county have a special computer network to share files and records. Someone accidentally downloaded a virus, called “megacode”, that put an encryption code on all the computer data.

The Sheriff said it basically made the system unusable, until they paid a ransom fee of about $300 to the creator of the virus.

[…]

And those Midcoast departments aren’t the only law enforcement victims. The Houlton Police Department was also hit by the same or similar virus early this week, and it locked up all their files. Chief Terry McKenna said they, too, were forced to pay the ransom to get their computer data restored

Read more on WCSH.

So now that they’ve publicly admitted that they’ve paid ransom to unlock their files, are they more likely to get hit again?  Can they really be sure their employees won’t fall for the next malware attempt?

There’s no doubt that this is a growing problem – or that at least departments are being more transparent in reporting it. Earlier this week, I noted the Tewksbury Police Department case in Massachusetts, but there have been others, too, as the Boston Globe reported:

Among other small-town police forces hit was the Swansea Police Department. It fell victim to the same threat in November 2013 and paid $750 to get its files back.

The police department in the Chicago suburb of Midlothian paid $500 in January. In Dickson County, Tenn., the sheriff’s office came under attack in October. Despite seeking aid from the FBI, the agency ended up paying $572 in ransom.

Not all departments pay the ransom – and some, thankfully, don’t need to:

But in Durham, N.H., Police Chief Dave Kurz chose not to pay because the department had backed up the encrypted information and could work around the seized database.

“We had to clean essentially all the computers, but all of our data was prepared,” Kurz said.

Others refuse to pay but lose their data:

The four-member police force in Collinsville, Ala., was hit in June, with the hackers demanding $500 to free up a database of mugshots. Chief Gary Bowen dug in, refused to pay, and never got his department’s files back.

“There was no way we were going to succumb to what felt like terrorist threats,” Bowen said.

Obviously, it would be much better if more departments were as prepared as the Durham, NH police were. Because what are all these departments going to do when the attackers start asking for even more money?  And what happens when the criminals start really hitting the k-12 systems? Will the districts pay ransom rather than be brought to their knees by locked files?

In related and helpful news, Charlie Osborne reports that Scraper ransomware has been broken, allowing for victims to circumvent payment and access their locked data.

No related posts.

Category: Government SectorMalwareU.S.

Post navigation

← Walters McCann Fanska notifies clients of network security breach
OpIsrael: Anonymous Hacks Israeli Arms Importer Website, Leaks Thousands of Login Data →

1 thought on “More police departments acknowledge paying ransom to unlock their systems”

  1. UpSurf.net says:
    April 10, 2015 at 6:21 pm

    Watching the clip where Sheriff Todd Brackett claims his department was paralyzed due to a virus holding them hostage. I was holding my breath hoping he wouldn’t say they payed the bad guy… Then it happened. As a professional Computer Repair business here in York Maine there are a couple of items I would like to pass along. One this encryption bug will leave remnants behind which will attack again leaving the department to pay again. Two the best way to get going again is to reload the operating system from scratch on all their systems, re-install third party software such as Microsoft Office, then restore work files (Data) from their backup. I am sure they have a backup solution… Right ? wink wink. If you would like to reach me for any reason please email me at [email protected], and please get your money back!

Comments are closed.

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • Air Force Employee Pleads Guilty to Conspiracy to Disclose Unlawfully Classified National Defense Information
  • UK police arrest four in connection with M&S, Co-op and Harrods cyberattacks (1)
  • At U.S. request, France jails Russian basketball player Daniil Kasatkin on suspicion of ransomware conspiracy
  • Avantic Medical Lab hacked; patient data leaked by Everest Group
  • Integrated Oncology Network victim of phishing attack; multiple locations affected (2)
  • HHS’ Office for Civil Rights Settles HIPAA Privacy and Security Rule Investigation with Deer Oaks Behavioral Health for $225k and a Corrective Action Plan
  • HB1127 Explained: North Dakota’s New InfoSec Requirements for Financial Corporations
  • Credit reports among personal data of 190,000 breached, put for sale on Dark Web; IT vendor fined
  • Five youths arrested on suspicion of phishing
  • Russia Jailed Hacker Who Worked for Ukrainian Intelligence to Launch Cyberattacks on Critical Infrastructure

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • How to Build on Washington’s “My Health, My Data” Act
  • Department of Justice Subpoenas Doctors and Clinics Involved in Performing Transgender Medical Procedures on Children
  • Google Settles Privacy Class Action Over Period Tracking App
  • ICE Is Searching a Massive Insurance and Medical Bill Database to Find Deportation Targets
  • Franklin, Tennessee Resident Sentenced to 30 Months in Federal Prison on Multiple Cyber Stalking Charges
  • On July 7, Gemini AI will access your WhatsApp and more. Learn how to disable it on Android.
  • German court awards Facebook user €5,000 for data protection violations

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.