A new wave of ransomware attacks is hitting small and mid-sized businesses (SMBs) and municipal governments, underscoring persistent vulnerabilities in local cybersecurity defenses. The recently formed ransomware group Interlock has claimed responsibility for a major breach that leaked 43 gigabytes of city data, disrupting critical services.
To contain the attack, city officials shut down information systems, resulting in Wi-Fi outages, halted library services, and the suspension of internal networks. Emergency services such as 911 remained operational. Approximately 3,500 municipal employees were required to reset credentials in person. Restoration efforts have prioritized public safety, financial systems, and daily operations. The city has refused to pay ransom demands, instead restoring data from uncompromised July 25 backups. By late August, more than 90% of systems had been re-secured with advanced cybersecurity tools.
Parallel investigations continue at the Aspen Policy Academy, where a phishing scam compromised at least one business account. Betsy Cooper, founding director of the Academy, highlighted systemic challenges facing municipalities, including underfunded IT departments, limited staffing, and repositories of sensitive citizen data that make them attractive ransomware targets.
Experts recommend immediate improvements to municipal cyber resilience, including:
- Public-private partnerships to expand capacity and leverage private sector expertise.
- Flexible procurement models that enable faster technology adoption.
- Talent-focused programs such as fellowships to attract cybersecurity professionals into government roles.
- Engagement with ISACs (Information Sharing and Analysis Centers) to strengthen knowledge-sharing.
Short-term measures include infrastructure audits, regular patching, and system compartmentalization to prevent attack spread. Cooper emphasized the importance of clear incident response plans, including protocols for shutting down IT systems and engaging legal counsel when necessary.
The attacks highlight growing risks for SMBs and cities as ransomware groups evolve, making proactive defense and recovery planning essential for public trust and operational continuity.
Source:
https://www.technewsworld.com/story/ransomware-wave-hits-smbs-and-cities-179920.html
