September 03, 2019

The Rise of Municipal Ransomware

America’s smallest cities and towns stand on the frontlines of cyber warfare.

By: Kara Frederick

Last month’s coordinated ransomware attacks against 23 cities in Texas reflect a troubling trend for America’s cities: bad actors are addicted to the payoff. In the 30 years since the first ransomware attack, the digital environment has changed beyond recognition, and it will only continue to mutate—by next year, approximately 30 billion devices will be connected to the Internet, and by 2025, almost 5 billion people will have access to the web. This presents an ever-growing opportunity for cybercriminals to wreak havoc—with local governments frequently in their crosshairs.

In the simplest terms, ransomware is malware that locks up data until the victim pays money to regain access. Established ransomware tactics involve holding a user’s data hostage for a few hundred dollars in Bitcoin. But attackers also make use of new ransomware strains like “Ryuk” and “SamSam” that target and infect entire organizations, and the demands for money increase exponentially. For instance, SamSam’s ransomware extortions average about $50,000 per attack. In August, a “single threat actor” likely compromised a managed-service provider—a company that manages numerous IT systems or services—to conduct attacks against Texas municipalities, demanding a collective 2.5 million dollars. But even after cities pay up, attackers may continue to target them and their insurers.

Read the full article in the Manhattan Institute's City Journal.

More from CNAS

  • Podcast
    • October 17, 2024
    U.S. Chip Controls and the Future of AI Compute

    That escalated quickly! Emily and Geoff discuss why the U.S. aim to deny China access to the computing power necessary for frontier AI capabilities has led to an ever expandin...

    By Emily Kilcrease, Geoffrey Gertz & Pablo Chavez

  • Podcast
    • October 11, 2024
    Asymmetry and AI: The Battle for Power

    Paul Scharre, Vice President and Director of Studies at CNAS, joins Zero Pressure to discuss the world of asymmetric warfare, a term used to describe imbalances in conflict. F...

    By Paul Scharre

  • Commentary
    • Just Security
    • September 19, 2024
    Competition, Not Control, is Key to Winning the Global AI Race

    The United States, with much of the world’s AI-enabling infrastructure, has positioned itself as the global leader in AI innovation. That might not be the case for much longer...

    By Keegan McBride & Matthew Mittelsteadt

  • Commentary
    • Time
    • September 16, 2024
    Regulating AI Is Easier Than You Think

    Countries can regulate AI from the ground up by controlling access to highly specialized chips...

    By Paul Scharre

View All Reports View All Articles & Multimedia