Knoxville Shuts Down Parts of its Network After Hit by Ransomware

upnorth

Moderator
Thread author
Verified
Staff Member
Malware Hunter
Well-known
Jul 27, 2015
5,457
The city of Knoxville, Tennessee, shut down large portions of its computer network on Thursday after being hit overnight by a ransomware attack, it was widely reported on Thursday.

The attack was first noticed by members of the Knoxville Fire Department around 4:30am Thursday, the Knoxville News Sentinel reported. Shortly after that, Knoxville Chief Operations Officer David Brace sent employees an email notifying them of the breach. “Please be advised that our network has been attacked with ransomware,” he wrote. “Information Systems is currently following recommend[ed] protocols. This includes shutting down servers, our internet connections and PC’s. Please do not log in to the network or use computer applications at this time.”

Earlier in the day, the city’s website was unreachable. By evening, access to the site was restored after city employees moved it from its normal domain—www.knoxvilletn.gov—to the ad hoc one cityofknoxville.hosted.civiclive.com. Officials said the fire and police departments were operating as normal, although police were no longer responding to minor traffic accident reports.
 

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top