the state colorado.gov The portal’s homepage went back online Thursday night after the state said a cyberattack had shut it down.
The homepage resumed operations around 6 p.m. Thursday, just over 24 hours after the state Emergency Operations Center said a “suspected anonymous foreign actor” forced it to quit. disconnect. State officials said the attacker also targeted several other state government services and websites across the United States.
Colorado officials have not released any additional information about those responsible for the cyberattack, the states affected or the data potentially exposed.
“This cybersecurity incident is part of an ongoing investigation in conjunction with state and federal partners,” the state Emergency Operations Center said in a statement. “No further details are available at this time due to the sensitivity and nature of the cyber event.”
CNN reported that pro-Russian hacking group Killnet took credit for the cyberattack, also claiming to have taken state government websites offline in Kentucky, Mississippi and other states.
NBC said the hacking group simply flooded states’ websites with web traffic to take them down, and there was no indication that any of the states’ internal systems were accessed.
Only the Colorado portal’s homepage was affected by the cyberattack, all others colorado.gov state government websites and services were not affected. The State Emergency Operations Center, the Governor’s Office of Information Technology, and the Statewide Internet Portal Authority actively monitor state websites and systems.
This latest assault came after a cyberattack in August hit most departments in Fremont County, limiting county services for several weeks. Most, but not all, government services were back up and running Monday, Fremont County Commissioner Dwayne Mcfall said.
The Governor’s Office of Information Technology has determined that the Fremont County cyberattack was carried out by BlackCat ransomware, also known as ALPHV. Actors affiliated with BlackCat often demand ransom payments of millions of dollars in cryptocurrency, such as Bitcoin or Monero, to recover encrypted digital files, according to the Federal Bureau of Investigation.
Cities and states in the United States have suffered cyberattacks – with increasing severity and regularity – in recent years.
Comparitech, a company that reviews cybersecurity tools, said America faces nearly 2,000 ransomware attacks since 2018, with an average ransom demand of nearly $2 million. These attacks, the company said, have so far cost health organizations $20.8 billion, schools and colleges $3.56 billion, governments $18.9 billion, and $20.9 billion. dollars to businesses.
The National Conference of State Legislatures said at least 40 states, plus Puerto Rico, have introduced or considered 250 bills or resolutions that deal with cybersecurity this year alone.