The mayor of Saint Paul, Minnesota's capital city, has confirmed that the Interlock ransomware gang is responsible for a cyberattack that disrupted many of the city's systems and services in July.
On July 29th, Minnesota Governor Tim Walz activated the National Guard in response to the crippling cyberattack that had affected St. Paul's digital services and critical systems.
The city requested Minnesota National Guard's cyber protection support due to the cyberattack's impact exceeding St. Paul's incident response capacity.
"While many city services remain available, some may be temporarily delayed or disrupted due to limited system access. We appreciate your patience and understanding as we work to bring systems fully back online," the city says.
"Online payments are currently unavailable. No late fees will be assessed during this period. Additional billing and service updates will be shared once systems are restored."
The city is still working with local, state, and federal partners to investigate the late July attack and restore full system functionality, but says that emergency services have been unaffected.
On Monday, Mayor Malvin Carter confirmed that the Interlock ransomware group was behind the attack, adding that the incident doesn't affect residents' personal or financial information and that the city refused to pay the gang's ransom demand.
The ransomware gang added the City of Saint Paul to its dark web portal earlier this week, claiming that they had stolen over 66,000 files or 43 GB worth of data, some of which has now been published on the group's leak site.
"A large part of the infrastructure was damaged, brought a lot of losses and damage! Including in the worst position were residents whose data was compromised," the gang claimed.
St. Paul entry on Interlock leak site (BleepingComputer)
... continue reading