Info stolen in Oakland ransomware attack set to be released
Employees will be notified if pilfered data names them, interim city administrator says
>> Information stolen in a recent ransomware attack against Oakland could be released publicly, the city warned Friday.
In a social media post, the city said it “recently became aware that an unauthorized third party has acquired certain files from our network and intends to release the information publicly.”
The city said it is working with specialists and law enforcement on the matter as well as “actively monitoring the unauthorized third party's claims to investigate their validity.”
City employees will be notified if the information involves them, interim City Administrator G. Harold Duffey said in an internal memo obtained by this news organization.
“In the meantime, we encourage you to follow best practices when it comes to protecting your information by remaining vigilant against incidents of identity theft and fraud,” Duffey said.
“We apologize for any concern and frustration this incident may have caused, and we thank you all for your continued support and understanding,” he added.
News of the data breach first surfaced Feb. 10, two days after it began. At the time, the city said its emergency and financial systems were not impacted, but many others were when the network was taken down to contain the attack. The city, for example, lost the ability to collect payments and process reports, permits and licenses.
On Feb. 14, Duffey proclaimed a state of emergency to help deal with ongoing outages related to the attack.
Similar data breaches have targeted hospitals, school districts and other public institutions, including Bay Area Rapid Transit systems in January. More than 120,000 files related to the transit agency's police force were ultimately posted to the dark web.
Duffey said the city is working to enhance its security as it continues to investigate and address the attack.
“The privacy and security of the data entrusted to us is of the utmost importance to us,” he said. “We take seriously our responsibility to safeguard this information and continue working with cybersecurity experts to further enhance the security of our systems.”