On May 7, the city of Baltimore, Maryland, was hit by a ransomware attack impacting its online services and more. Following the attack, the attackers took control of a majority of the city’s servers and demanded a ransom of 13 Bitcoins to unlock the encrypted data.
However, the city decided to restore the affected systems and data on its own by rejecting the demand of attackers. This eventually has cost the city more than $18.2 million in the recovery process.
While this may be true, a new audit shows that the city lacked the right cybersecurity posture due to which it lost a majority of key data.
What does the new audit say?
A new audit from Baltimore’s information technology department has cited that outdated proper backup method was the primary reason for the loss of data.
What is the outcome?
Baltimore City Auditor Josh Pasch reported that one of the “responsible personnel’s hard drive was confiscated and the other responsible personnel’s selected files were removed due to the May 2019 ransomware incident."
He further went on to add that this lost and missing data shows the lack of security awareness among the IT teams.
Expenditure so far