On October 26, 2024, Bucharest’s District 5 City Hall announced that it had fallen victim to a ransomware attack that compromised its servers. The breach was discovered when city employees reported malfunctions with the institution’s telephone switchboard. In response to these issues, a maintenance company was called in to investigate, revealing the cyberattack and a ransom demand of $5 million displayed on the affected servers. This alarming incident has raised concerns regarding the security measures in place to protect government infrastructure.
The attack was localized, impacting only the headquarters of District 5 City Hall and sparing other departments operating in different offices. Following the discovery, city officials immediately contacted the Ministry of Research, Innovation, and Digitization, along with representatives from the National Cyber Security Directorate, to initiate the necessary steps for remediation. The incident has highlighted the ongoing vulnerability of governmental entities to cyber threats, particularly in the context of increasing ransomware attacks targeting public institutions.
District 5 Mayor Cristian Popescu Piedone has taken a strong stance against the demands of the cybercriminals, publicly declaring that he will not pay the ransom. His determination to resist the hackers reflects a growing trend among organizations targeted by ransomware attacks, where paying the ransom could perpetuate the cycle of cybercrime. Piedone’s refusal to comply demonstrates a commitment to maintaining the integrity of the city’s operations and standing firm against such criminal activities.
Looking ahead, Mayor Piedone emphasized the need for improved cybersecurity measures within the City Hall to prevent similar incidents from occurring in the future. As the city assesses the extent of the damage and works to restore normal operations, the incident serves as a critical reminder of the importance of robust cybersecurity practices for public institutions. The ongoing threat posed by cyberattacks necessitates vigilance, investment in technology, and the establishment of protocols to safeguard sensitive information and ensure the continuity of essential services.
Reference:
