Ransomware Attack on City of St. Cloud, Florida: Hunters International Strikes
Incident Date:
April 16, 2024
Overview
Title
Ransomware Attack on City of St. Cloud, Florida: Hunters International Strikes
Victim
City of St. Cloud, Florida
Attacker
Hunters International
Location
First Reported
April 16, 2024
Ransomware Attack on City of St. Cloud, Florida by Hunters International
Attack Overview
The City of St. Cloud, Florida, recently fell victim to a significant ransomware attack orchestrated by the cybercriminal group known as Hunters International. The attack led to the exfiltration of approximately 1.4 terabytes of data, encompassing 719,597 files. The specific ransom demand details have not been disclosed publicly.
Victim Overview
The local government entity, The City of St. Cloud, provides a wide range of services to its residents and businesses. With an annual revenue of approximately $57 million and a workforce of 652 employees, the city stands out for its comprehensive resources aimed at fostering a supportive environment for business and community development. Key services include a Business Start-Up Guide, local business tax information, and extensive public works and permit information systems.
Vulnerabilities and Target Profile
Given its role in local government, the City of St. Cloud manages a substantial amount of sensitive data related to its citizens and local businesses. This data, coupled with the city's digital transformation initiatives such as online accounts for service management, makes it an attractive target for ransomware attacks. The extensive data repositories and interconnected systems potentially increase the risk of cyber threats if not adequately protected.
Implications of the Attack
The breach not only threatens the privacy and security of the residents' and businesses' data but also puts a spotlight on the cybersecurity measures in place at municipal levels. This incident serves as a critical reminder of the vulnerabilities that exist within public sector information systems and the continuous need for enhanced security protocols.
Sources
Recent Ransomware Attacks
The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.
The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.