Home / / Ransomware hits San Francisco transport authority

Ransomware hits San Francisco transport authority

Passengers traveled for free as terminals and ticket machines shut down

Ransomware hits San Francisco transport authority
The ransomware attack is believed to have blocked around one quarter of the transport agency's PCs.

San Francisco's transport system was hit by a ransomware attack over the weekend, which disabled the transport authority's IT network.

The hack affected the San Francisco Municipal Transportation Agency's (SFMTA) network from Friday evening, leading to ticket machines being turned off as a precaution, and passengers travelling for free.

The agency said that the transport network itself was not affected, and normal services were resumed on Sunday.

The attackers claimed to have hit 2,112 end points across SFMTA's 8,656 computer network, including ticket machines and employee PCs, and to have affected many business applications and functions including payroll, email servers, Quickbooks, NextBus operations, various MySQL database servers, and staff training.

The hackers demanded a 100 bitcoin ($72,600) ransom, and told one San Francisco news website that the ransom was due on Sunday. SFMTA said it was still investigating the hack, and it was not clear if the attack had been contained on Sunday.

Follow us to get the most comprehensive IT Security news delivered fresh from our social media accounts on Facebook, Twitter, Youtube, and listen to our Weekly Podcast. Click here to sign up for our weekly newsletter on curated technology news in the Middle East and Worldwide.