Delaware libraries are grappling with the aftermath of a ransomware attack that occurred last Friday, which has severely disrupted access to public-use computers across the state. The attack, which involved hackers seizing control of the virtual servers that run these systems, has prompted the Delaware Division of Libraries to issue a public notice regarding an internet outage affecting multiple library facilities. According to Annie Norman, the director of the Division of Libraries, the attackers are demanding a ransom of approximately $1 million to regain access to the systems.
In a decisive move, Norman has stated that the libraries will not pay the ransom. Instead, the plan is to rebuild the servers that manage the public computers. Although specific timelines for the reconstruction are still uncertain, Norman emphasized the importance of adhering to best practices in handling such attacks, noting that paying the ransom is generally discouraged. She expressed hope that this approach will lead to a more secure and reliable system in the long run.
The ransomware attack is part of a troubling trend in the United States, where local government systems have increasingly become targets for cybercriminals. The FBI has noted that state and local governments are particularly vulnerable to such attacks. This incident follows other high-profile breaches, including a similar event last year in Kent County and a recent attack on the Bayhealth healthcare system in Dover, which highlights the growing risks faced by public institutions in maintaining their digital infrastructure.
Despite the current disruption, Norman reassured the public that library services are still operational, with WiFi access available albeit in a limited capacity. Importantly, she confirmed that library cardholders’ personal information remains secure and is not at risk. As the Delaware Division of Libraries collaborates with technology experts to investigate the incident, the focus will be on restoring normalcy and enhancing security measures to protect against future cyber threats.
