Idaho Cyber Attacks

Infrastructure Affected

Public Safety
Government
Medical
Education
 
Back to Archive
Idaho.jpg
 

Public Safety

Twin Falls County computer network remains down, cause under investigation

Breach Type – Unknown, Malware

MagicValley.com

  • “TWIN FALLS — County departments continue to operate on a limited basis this week as they deal with internet and computer network outages caused by malware."
  • "The county’s information technology staff, along with private cybersecurity experts, are working to determine what caused the technical disruption,"
  • "Sheriff’s office employees first noticed issues with the county’s internet and computer networks Saturday morning. "
  • "Along with county departments, the local court system has been affected by this disruption."
Read More

 
Post Falls Police Department, Kootenai County

Breach Type – Hacking, Ransomware

The Spokesman-Review

  • Computer systems of police department disrupted by bad actors
  • Ransomware infected systems, sensitive data remained intact
  • "Email and digital media among systems affected in attack "
Read More

 
Ransomware Effects All of Bingham County – Including Dispatchers

Breach Type - Ransomware

KSL

  • Unidentified hackers ask for $25,000-$30,000
  • County refused to pay ransom, depends on backup servers
  • Virus was not contained and then infected backup servers, too
  • Calls went through to 911 services, but maps and notepads were necessary to get things done
Read More
WFAE

  • Paid ransom
Read More

 
BACK TO TOP

Local Government

UPDATE: Money stolen from Sugar City coffers returned, Madison County

Breach Type – Phishing, Other

Rexburg Standard Journal

  • “All but $300 of the $77,940 a Sugar City employee was conned into sending a scammer via a bank wire has been returned.”
  • “The city took a collective sigh of relief when the money was returned, Mayor Steve Adams said.”
  • “The city will no longer wire money to anybody for the foreseeable future. It will also ensure that whenever any city official writes a check that two people authorize doing so, Adams said.”
Read More

 
Sugar City scammed $77k intended for road work, Madison County

Breach Type – Phishing, Other

Rexburg Standard Journal

  • “Sugar City was caught in a scam after a con artist tricked the city clerk into sending nearly $80,000 under the guise of paying for road work.”
  • “Mayor Steve Adams said whoever stole the money knew the city’s relationship with the construction company.”
  • “The Madison County Sheriff’s Office did a report on the crime, and the FBI was notified.”
  • “This was the first time that the city had been scammed”
  • “… this incident may serve as a warning to other municipalities.”
Read More

 
Bannock County

Breach Type – Unknown, Data Breach

Data Breaches

  • County government was victim of cyberattack
  • Bad actor accessed government database without authorization
  • Names, Social Security Numbers, driver's license information, likely leaked
Read More

 
City of Pocatello, Bannock County

Breach Type – Hacking, Data Breach

Gemini Advisory

  • Hackers exploited vulnerability in Superion’s Click2Gov Utility Bill Pay Systems affecting government entities across the U.S.
  • Over 20,000 records from eight cities in five different states have been offered for sale on the dark web
  • City of Pocatello one of the eight cities impacted
Read More

 
Idaho Department of Health and Welfare, State

Breach Type - Phishing, Data Breach

Kansas City

  • Idaho Department of Health and Welfare contractor became victim of phishing
  • Personal information of more than 2,000 clients likely compromised
  • Infant Toddler Program and Mental Health Services were infected for nearly one year
Read More

 
Ada County Highway District, Ada County

Breach Type - Ransomware

Idaho States Man

  • FBI and the Department of Homeland Security are investigating the attack that crippled Ada county systems for over a day
  • It is believed the attackers may not have accessed databases but it is otherwise unknown the extent of this attack
  • Ransom was not paid and the employees were told to shut down their computers following the IT department’s instruction
Read More

 
Madison County Government

Breach Type - Hacking, Ransomware

Post Register

  • Ransomware virus infected Madison County computer systems
  • County employees unable to use email system
  • Virus targeted county’s digital files, preventing the issuing of payroll checks to employees
Read More
Rexburg Standard Journal

  • Madison County refused to pay ransom for files
  • Virus prohibited time-sensitive absentee ballot requests
  • All county departments affected
  • Backup files utilized by IT specialists recovering data for Madison County
Read More

 
Idaho Tax Commission, Ada County

Breach Type - Phishing

Idaho Business Review

  • Idaho Tax Commission employee fell victim to advanced phishing attack
  • Employees previously completed rigorous cyber security training
  • Malware launched used a zero-day exploit
Read More

 
Idaho Legislature & Idaho iCourt Portal Websites, Ada County

Breach Type - Hack

East Idaho News

  • Hacktivist group, known as AnonPlus Italia, infiltrated Idaho municipal websites
  • Both websites displayed the group's propaganda
  • No data stolen from website
Read More

 
Idaho Transportation Department (ITD)

Breach Type - Hack

East Idaho News

  • Email hack of 2 employees
  • ITD's Division of Motor Vehicles identified & notified potentially affected individuals
  • 140 individuals & companies notified of breach
Read More

 
Idaho State Treasurer Website

Breach Type - Hack

Idaho Statesman

  • Team System Dz hacks Idaho State Treasurer website
  • Hackers could not access databases with user information
  • Used website to post pro-Islamic State message
  • Same attack hits government websites across the U.S.
Read More

 
Idaho Department of Labor

Breach Type - Other/Data Breach

East Idaho News

  • Hack targets Idaho Department of Labor job search engine
  • 170,000 potentially affected individuals
  • Private information of job-seekers compromised by hackers
Read More

 
Teton Co. Website

Breach Type - Other/Hack

East Idaho News

  • Turkish hacker defaces Teton County website
  • No known motive
  • Hacker used SQL injection to infiltrate website
Read More

 
Idaho Department of Fish and Game

Breach Type - Other/Data Breach

Magic Valley

  • Security vulnerability in Department of Fish and Game allowed access to hackers
  • 6.5 million people in four states potentially affected by data breach in third party vendor
  • FBI and Department of Homeland Security lead investigation
Read More

 
BACK TO TOP

Medical

Data Breaches Hit Saltzer Health, Loyal University Medical Center, Canyon County

Breach Type – Phishing, Data Breach

Health IT Security

  • “Idaho-based Saltzer Health, part of Intermountain Healthcare, recently began notifying patients of a data breach that occurred from late May to early June 2021 and impacted 15,650 individuals.”
  • “Saltzer Health noticed suspicious activity on June 1 and determined that an unauthorized third party accessed an employee email account. On September 21, Saltzer Health determined that it could not rule out the possibility that the unauthorized individual could have viewed protected health information.”
  • “After discovering this incident, Saltzer Health said it worked to reset the password of the impacted email account, monitor network activity, and provide notification to affected individuals as soon as possible.”
Read More

 
Blue Cross of Idaho, State of Idaho

Breach Type - Hacking, Data Breach

Daily Bee

  • The insurance company stated that its website had been hacked and personal information had been compromised
  • Blue cross stated that any who were affected by this have been contacted with complementary credit monitoring
  • Hackers intended to cause more damage by rerouting financial transactions allowing blue cross to notice the attack
Read More

 
Benewah Community Hospital, Benewah Co.

Breach Type - Ransomware

St. Marie's Gazette Record

  • Benewah Community Hospital discovered servers encrypted by ransomware
  • Hospital employees continued work manually & through downtime procedures
  • Network taken offline and quarantined
Read More

 
BACK TO TOP

Education

Ransomware attacks Shelley School District computers, Bingham County

Breach Type - Unknown, Ransomware

Local News 8 / ABC Eyewitness News

  • “The Shelley School District was a victim of a ransomware attack. The attack was discovered on Dec. 6."
  • "We are told no student information was lost and all of the district's financial information is also safe. They were able to catch the malware before it got to those servers."
  • "We recently detected and are responding to malware activity on our computer network. As soon as we learned this, we began working to investigate, to restore operations, and determine the effects of the incident."
  • ”We also are working with nationally recognized third-party cybersecurity consultants to assist us. We continue to actively monitor the situation."
Read More

 
Sugar-Salem School District 322, Madison County

Breach Type - Unknown, Ransomware

East Idaho News

  • During school testing over 300 servers were locked down due to a ransomware attack
  • No sensitive data was lost or accessed but testing was shut down
  • The district is still experiencing a lack of the servers and cannot use online services
Read More

 
Bonneville Joint School District 93 & Idaho Falls District 91, Bonneville County

Breach Type - Phishing, Malware

East Idaho News

  • The school district is recovering after a wide scale phishing scam after several staff accounts were compromised
  • Several realistic emails were sent out that looked legitimate leaving the district to attempt to repair damages and become secure again
  • The district suffered as two separate attacks, another being a virus, occurred at the same time
  • Emails attempted to gain credentials to users’ accounts such as passwords and usernames to access their accounts
Read More

 
Teton School District, Teton County

Breach Type - Phishing, Other

Teton Valley News

  • The school district received fraudulent emails causing the district to lose $784k of bond funds
  • Several people overlooked the invoice but payment had not been made until the fraudulent email was sent
  • Two emails were sent that requested payment looking believable but were false
Read More

 
College of Eastern Idaho, Bonneville County

Breach Type - Phishing, Other

DataBreaches

  • College of Eastern Idaho identified suspicious activity within employee’s email account
  • Unauthorized access to four employee email accounts occurred for two months
  • Individuals impacted in data breach
Read More

 
Nampa School District

Breach Type - Hack

KIVI TV

  • Hackers access a school district email account
  • 3,983 past & present employees potentially affected
  • Nampa School District offering one year of free identity monitoring
Read More

 
Jerome School District

Breach Type - Ransomware

Seattle Times

  • Ransomware infects Jerome District's internet and phone systems
  • Malware entered system through downloaded content or malicious email
  • District refused to pay ransom, restoring backups on every device
  • Jerome District's anti-virus software failed to notify & protect against attack
Read More
Bonner County Daily Bee

  • Fighting ransomware for six weeks
  • Originally hackers asked for 4 bitcoin, at the time was $65,000
  • District is restoring system through backup files unaffected during attack
Read More

 
The College of Southern Idaho, Twin Falls Co.

Breach Type - Phishing

Magic Valley

  • College of Southern Idaho fell victim to malicious phishing scheme
  • Employee inadvertently sent all employee W-2 information to hackers
  • Local law enforcement & FBI lead investigation on cyber attack
Read More

 
BACK TO TOP