September 03, 2019

The Rise of Municipal Ransomware

America’s smallest cities and towns stand on the frontlines of cyber warfare.

By: Kara Frederick

Last month’s coordinated ransomware attacks against 23 cities in Texas reflect a troubling trend for America’s cities: bad actors are addicted to the payoff. In the 30 years since the first ransomware attack, the digital environment has changed beyond recognition, and it will only continue to mutate—by next year, approximately 30 billion devices will be connected to the Internet, and by 2025, almost 5 billion people will have access to the web. This presents an ever-growing opportunity for cybercriminals to wreak havoc—with local governments frequently in their crosshairs.

In the simplest terms, ransomware is malware that locks up data until the victim pays money to regain access. Established ransomware tactics involve holding a user’s data hostage for a few hundred dollars in Bitcoin. But attackers also make use of new ransomware strains like “Ryuk” and “SamSam” that target and infect entire organizations, and the demands for money increase exponentially. For instance, SamSam’s ransomware extortions average about $50,000 per attack. In August, a “single threat actor” likely compromised a managed-service provider—a company that manages numerous IT systems or services—to conduct attacks against Texas municipalities, demanding a collective 2.5 million dollars. But even after cities pay up, attackers may continue to target them and their insurers.

Read the full article in the Manhattan Institute's City Journal.

More from CNAS

  • Reports
    • December 11, 2024
    Technology to Secure the AI Chip Supply Chain: A Working Paper

    Advanced artificial intelligence (AI) systems, built and deployed with specialized chips, show vast potential to drive economic growth and scientific progress....

    By Tim Fist, Tao Burga & Vivek Chilukuri

  • Commentary
    • Foreign Policy
    • December 4, 2024
    Trump Must Rebalance America’s AI Strategy

    The disagreements about AI progress are so fundamental and held with such conviction that they have evoked comparisons to a “religious schism” among technologists....

    By Bill Drexel & Ruby Scanlon

  • Commentary
    • November 26, 2024
    Guidance for the 2025 AI Action Summit in Paris

    In September 2024, the French government, in collaboration with civil society partners, invited technical and policy experts to share their opinions on emerging technology iss...

    By Janet Egan, Michael Depp, Noah Greene & Caleb Withers

  • Commentary
    • Sharper
    • November 20, 2024
    Sharper: Trump 2.0

    Donald Trump's return to the White House is widely expected to reshape America's global priorities. With personnel choices and policy agendas that mark a significant break fro...

    By Charles Horn & Gwendolyn Nowaczyk

View All Reports View All Articles & Multimedia