About five days after the Baltimore government paralyzed by cryptocurrency ransomware, which have infected computers connected to the city's communications network servers, they have been isolated and "cleaned," The Baltimore Sun reported. However, hackers still had access to the network during the weekend, leading to more in-depth investigation by the FBI, according to mayor Jack Young.
"These people are so experienced because their job is only to disrupt," Young said. "I would really like to use their experience for something better than setting up scams in cities and companies. ”
Last Wednesday, it was reported that the hackers stopped the operation of the Baltimore communications network.
Baltimore Sun reported that ransomware was recognized as RobinHood. The hacker demanded encryption as the preferred payment method to unlock files on different computers.
The hackers have indicated in the note that 3 Bitcoin (about 21.700 dollars at current prices) will unlock any system and about 13 Bitcoin (worth $ 86.400) will unlock the entire city's communications system.
The note also said that if someone from the government came into contact with the authorities to cut off all communication. He also stressed that antivirus software would hurt computers. The ransomware processes were entirely automated.
"We won't say anything more, all we know is MONEY!" The note said. “Hurry! Tik Tak, Tik Tak, Tik Tak! ”
The FBI has not yet released details of the case, but some ransomware suspects that it is behind the incident. Here is a statement from the mayor that was made on Saturday:
“The city services have not been affected. People use cash for their transactions or if they are not able to do their transactions closely, they send their money by post. That's how the whole city works. We do it in a different way and Baltimore citizens are not greatly affected, we just can't get emails and things like that, "Young said. "We do all the procedures manually, as we did decades ago."
Last week, city officials were sent home because their computers were almost useless.
Max Reuling, an advisor to the Baltimore Public Works Department and project manager at TFE Resources, said work was stopped last Tuesday after the ransomware attack that destroyed the email and critical work schedules associated with the Baltimore servers. TFE Resources is a private company responsible for maintaining the Baltimore water and sewerage lines. Since Saturday, he said that specific communication systems were still out of service.
As for the ransom, Young said that of course the hacker will not even receive a Bitcoin.
Almost 22 local governmental ransomware attacks have reported 2019, which so far exceeded the number of 2018.
In March, the New York state capital, Albany, was the victim of a ransomware attack.
Washington said Iran was responsible for the two most destructive US ransomware attacks that took place last year in Atlanta and Newark. The ransomware, called SamSam, has earned 6 millions of dollars from local governments, the Ministry of Justice said and caused $ 30 million dollar damage.
As for local governments in the US, such as Baltimore, they are considered "easy targets" by America's opponents because their networks are generally not as frequent as major companies.