Ransomware hits San Francisco transport authority

Passengers traveled for free as terminals and ticket machines shut down

Tags: Cyber crimeRansomwareUSA
  • E-Mail
Ransomware hits San Francisco transport authority The ransomware attack is believed to have blocked around one quarter of the transport agency's PCs.
By  Mark Sutton Published  November 28, 2016

San Francisco's transport system was hit by a ransomware attack over the weekend, which disabled the transport authority's IT network.

The hack affected the San Francisco Municipal Transportation Agency's (SFMTA) network from Friday evening, leading to ticket machines being turned off as a precaution, and passengers travelling for free.

The agency said that the transport network itself was not affected, and normal services were resumed on Sunday.

The attackers claimed to have hit 2,112 end points across SFMTA's 8,656 computer network, including ticket machines and employee PCs, and to have affected many business applications and functions including payroll, email servers, Quickbooks, NextBus operations, various MySQL database servers, and staff training.

The hackers demanded a 100 bitcoin ($72,600) ransom, and told one San Francisco news website that the ransom was due on Sunday. SFMTA said it was still investigating the hack, and it was not clear if the attack had been contained on Sunday.

Add a Comment

Your display name This field is mandatory

Your e-mail address This field is mandatory (Your e-mail address won't be published)

Security code