Maryland Cyber Attacks

Infrastructure Affected

Public Safety
Government
Medical
Education
 
Maryland.jpg
 

Public Safety

Salisbury Police Department, Wicomico County

Breach Type – Hacking, Ransomware

WBOC

  • Police department in jeopardy after ransomware attack demands money for database information
  • Officers could not get into computer database
  • Hackers did not compromise or download information
  • The department never paid and the information was recovered
  • Attack noted as the worst cyber attack in Salisbury Police Department history
Read More

 
Baltimore 911 CAD System

Breach Type - Ransomware

Baltimore Sun

  • Ransomware takes down 911 CAD system for only 17 hours
  • CAD appears to have been properly isolated to prevent spread
  • Fast restoration suggests that backups were in place
  • Root cause identified and remediated within 24 hours
  • 24-hour resolution suggests Cyber Incident Plan in place
  • FBI notified and is assisting city
Read More

 
St. Mary's Government's Computers Attacked on Thanksgiving

Breach Type - Ransomware

The Enterprise

  • Government hit with cyber-attack on Thanksgiving evening
  • Department of emergency services and technology identifies attack as ransomware
  • Servers down to repair network & mitigate attack
Read More

 
Twitter Accounts of Anne Arundel County Police Hacked by Cybercriminals

Breach Type - Hacking

Softpedia News


Read More

 
BACK TO TOP

Local Government

City of Baltimore Government Systems, Baltimore City County

Breach Type - Ransomware

U.S. News

  • The government of Baltimore was forced to shut down most of its systems following a ransomware virus
  • No critical systems were compromised and no sensitive personal information has been exposed
  • Email and phone systems did compromise the effectiveness of operations within the networks
Read More
State Scoop

  • The malware was identified as RobinHood that is a new ransomware variant
  • This specific ransomware variant has an unknown origin of how it went into the City’s network
  • An aggressive note had been found that was in broken English
Read More

 
Anne Arundel County Library, Anne Arundel County

Breach Type - Phishing, Malware

Capital Gazette

  • 600 Anne Arundel County Library computers exposed & infected with Emotet virus
  • Library customer information was not breached
  • Emails containing the Emotet virus may have circulated, impersonating PayPal
Read More

 
Caroline County Government, Caroline County

Breach Type - Phishing, Data Breach

Caroline MD

  • Caroline County fell victim to phishing attack
  • Hackers impersonated County Administrator
  • W-2 forms were sent to hackers
  • All 2017 county employees affected by data breach
Read More

 
Frederick County

Breach Type - Cryptojack/Other

WCCF Tech

  • Over 4,200 victims hijacked to mine Monero cryptocurrency
  • Secretly hijacked using compromised plug-in called "Browsealoud"
  • Though sites were affected for hours, no user data was affected/compromised
Read More

 
Maryland State Election System

Breach Type - Russian Election Hacking

CyberScoop

  • Department of Homeland Security notifies 21 states of Russian election hacking
  • Intrusion occurred in 2016 – taking officials 1 year to notify states including MD
  • Serious attempts to compromise states did not result in vote tallies being affected
Read More
StateScoop

  • Most of the 21 originally notified states believed to be scanned by hackers
  • Vote tallies remain unaffected for 2016 elections
  • Allocating federal funding to cyber security related election efforts
Read More

 
Howard County Website

Breach Type - Hacking

Baltimore Sun

  • Government website hacked with pro-Islamic State messages
  • Part of a larger attack on local gov. websites
  • No breach of data
  • No personal data compromised
Read More

 
Baltimore City Employees

Breach Type - Hacking

Baltimore Sun

  • Hacker stole data from Baltimore City employees and filed fraudulent tax returns
  • Not clear how many employees affected or when attack occurred
Read More

 
BACK TO TOP

Medical

Frederick County Regional Health System, Frederick County

Breach Type - Phishing, Data Breach

Frederick News Post

  • Frederick County hospice patients had personal information stolen from June '17 to January '19
  • Employee's email account was accessed via phishing, perpetrator was able to view names, SSNs, and other information
  • Health system offering credit monitoring and identity protection services for one year for patients affected
Read More

 
University of Maryland Medical System, Baltimore City County

Breach Type - Ransomware

Baltimore Sun

  • Ransomware attack affected 250 of the hospital’s 27,000 devices
  • Patient care was unaffected, no patient data compromised in attack
  • Desktop computers quarantined, systems back online in several hours
Read More

 
LifeBridge Health and LifeBridge Potomac Professionals, Baltimore City

Breach Type - Hack

DataBreaches

  • Malware infected server that hosts the electronic medical record, patient registration, & billing systems
  • Through investigation discovered hackers also accessed systems in 2016
  • Private patient information potentially exposed to bad actors
  • LifeBridge offering one year of free-credit monitoring to those potentially affected
Read More

 
Serene Sedation

Breach Type - Hack

HCA News

  • Hacking incident leaves 5,207 patients with potentially exposed information
  • Breach reported by U.S. Department of Health and Human Services Office for Civil Rights
  • Hack targeted the network server
Read More

 
Chase Brexton Health Care

Breach Type - Phishing

Data Breaches

  • Over 16,500 patients potentially affected after four employees opened phishing emails
  • Attackers re-routed employees' paychecks
  • No evidence that hackers were seeking (or accessed) patients' personal data
  • Notified all potential victims of this cyber incident
Read More

 
MedStar Health (same as D.C.)

Breach Type - Ransomware

CSO Online

  • Disabled network after ransomware virus infected multiple systems
  • Took down systems to prevent spread of virus
  • No current evidence information has been compromised
  • Organization moved to backup systems and paper transactions
  • FBI investigation ongoing
Read More

 
BACK TO TOP

Education

Anne Arundel County Schools

Breach Type - Phishing

Capital Gazette

  • Anne Arundel County Schools fall victim to phishing scheme
  • Hackers steal $57,000 from employee paychecks by re-routing direct deposits
  • The attack disabled electronic access by employees to some HR and payroll functions
  • Anne Arundel County Schools reimbursed its employees
Read More

 
Baltimore City Public Schools

Breach Type - Phishing

Fox Baltimore

  • 150 staff members fall victim to phishing scheme
  • Employees mistakenly exposed account credentials to hackers
  • 23 accounts potentially compromised
  • School's spokesperson claimed attacks were largely unsuccessful due to internal filters
Read More

 
Montgomery County Public Schools

Breach Type - Hack

Bethesda Magazine

  • Cyber disruption had school's central system offline for 3 days
  • Data of students and staff fully protected by anti-virus software
  • Law enforcement investigated attack
  • Problem mitigated by IT team and technology vendors
Read More

 
Frederick County Schools

Breach Type - Hack

Baltimore Sun

  • Sensitive information of 1,000 former students exposed on the dark web by hackers
  • Data breach took place in 2010, affecting those in attendance from 2005-2006
  • MD State Dept. of Education denies the breach occurred
Read More

 

BACK TO TOP