Ransomware hits San Francisco transport authority
Passengers traveled for free as terminals and ticket machines shut down
San Francisco's transport system was hit by a ransomware attack over the weekend, which disabled the transport authority's IT network.
The hack affected the San Francisco Municipal Transportation Agency's (SFMTA) network from Friday evening, leading to ticket machines being turned off as a precaution, and passengers travelling for free.
The agency said that the transport network itself was not affected, and normal services were resumed on Sunday.
The attackers claimed to have hit 2,112 end points across SFMTA's 8,656 computer network, including ticket machines and employee PCs, and to have affected many business applications and functions including payroll, email servers, Quickbooks, NextBus operations, various MySQL database servers, and staff training.
The hackers demanded a 100 bitcoin ($72,600) ransom, and told one San Francisco news website that the ransom was due on Sunday. SFMTA said it was still investigating the hack, and it was not clear if the attack had been contained on Sunday.