Pennsylvania AG Office Hit by Ransomware, Court Cases Disrupted
▼ Summary
– Pennsylvania’s Office of Attorney General suffered a ransomware attack in August that encrypted files and took servers offline.
– The attack has caused delays to both criminal and civil court cases, prompting courts to issue time extensions.
– Attorney General Dave Sunday confirmed no ransom payment was made and an active investigation is ongoing with other agencies.
– Most staff now have email access and the website and main phone line are restored, though full functionality is still being worked on.
– The OAG has not confirmed whether data was stolen but will provide public updates and individual notifications if necessary.
A significant ransomware attack has targeted the Office of the Attorney General in Pennsylvania, causing widespread disruption to both civil and criminal court proceedings across the state. The incident highlights the growing vulnerability of public sector institutions to sophisticated cyber threats and the cascading effects such breaches can have on judicial operations.
Attorney General Dave Sunday confirmed that servers were taken offline in August after an external actor encrypted critical files, demanding payment to restore access. Officials have firmly stated that no ransom was paid. While the immediate focus remains on restoring systems, it remains unclear whether sensitive data was exfiltrated during the breach.
Due to the ongoing nature of the investigation, which involves collaboration with multiple agencies, detailed information regarding the attack’s origin or specific response measures remains limited. Sunday emphasized that regular public updates will continue, and individuals will be notified if the investigation determines that personal information was compromised.
As the primary law enforcement body in Pennsylvania, the OAG handles a wide range of responsibilities, from criminal prosecutions to consumer protection enforcement. The cyberattack has forced several courts to grant extensions in both criminal and civil cases, though officials do not believe any case will be irreparably harmed solely due to the technical interruption.
The incident first came to light on August 18, when the OAG’s website, email systems, and office phone lines were abruptly taken offline. Since then, progress has been made in restoring services: most staff now have email access, the main phone line is operational, and the website has been brought back online. However, full operational recovery is still underway.
Approximately 1,200 employees across 17 offices continue to perform their duties using alternative methods while systems are gradually reinstated. The OAG is also coordinating with partner agencies to strengthen defenses and prevent future attacks of this nature.
(Source: InfoSecurity)
