A significant ransomware attack that struck the city of Wichita last May has unveiled crucial details about its impact on the local police department. As cyber threats continue to grow in sophistication, it's evident that city officials are grappling with the consequences of this incident.
On Wednesday, city officials confirmed to KAKE News that the primary objective of the attack was to extract sensitive data from the Wichita Police Department. "We think we know all we are going to know about the cyber event in May," said City Manager Bob Layton. This direct acknowledgment of the incident underscores the seriousness of the breach and the subsequent disruption it caused to city government operations.
"We think we know all we are going to know about the cyber event in May,"
Following the attack, online services related to the city government were temporarily halted to assess the damage and gauge the extent of the data compromised. Layton specified, "We know that the database was targeted and we do know that some data left our system through pretty sophisticated forensics analysis." While exact specifics about the stolen records remain vague, it is known that they originated from a robust database of approximately 77,000 police reports.
The leaked files reportedly included incident reports as well as basic personal information such as names, addresses, traffic citations complete with birth dates, email addresses, and even, albeit minimally, credit card details.
Adding another layer of complexity, the notorious LockBit ransomware group claimed responsibility for the attack, which has positioned itself among the most prolific in the world. Although city authorities have not disclosed the ransom amount demanded, Layton asserted, "We didn't pay it." This statement highlights the management's decision to resist yielding to cybercriminal demands, even amid mounting pressures.
In the aftermath of the incident, city officials have engaged in an extensive analysis and recovery process, attempting to safeguard the integrity of the remaining city data. The attack's nature prompted city leaders to consider measures to protect the personal information that may have been jeopardized. However, Layton cautioned, "Although we don’t know specifically whose information may have been stolen, we have taken steps to protect that information."
By the Numbers
Despite efforts to gather more information regarding the attack through a Kansas open records request, KAKE News faced a setback. The City of Wichita public records office responded with a denial, stating that certain information was withheld due to concerns that its release might jeopardize the security of the city's IT and communication systems.
As cities worldwide grapple with threats in cyberspace, this incident serves as a wake-up call for local governments. The growing complexity of cyberattacks emphasizes an urgent need for enhanced protective measures to fortify public infrastructure against potential breaches.
Moving forward, Wichita's experience underscores the importance of investing in sustainable cybersecurity protocols and fostering a culture of readiness should further attacks occur. As threats evolve, so too must the strategies employed to safeguard critical information and maintain public trust in municipal services.
