A Georgia county official’s defiance of a Russian ransomware ring.

Last January, Fulton County, Georgia, experienced a crippling ransomware attack that brought county services to a standstill. Fulton County Chairman Robb Pitts described the situation as being “held hostage,” explaining that essential services like library access, marriage license issuance, and tax inquiries were completely unavailable. The attack highlighted the disruptive power of ransomware, a criminal enterprise where hackers encrypt an organization’s data and demand a ransom for its release.

The attack on Fulton County carried exceptionally high stakes. Just five months prior, former President Donald Trump and eighteen others had been indicted there for allegedly attempting to overturn the 2020 election. The hackers claimed possession of secret documents related to this case, threatening to publicly release them unless a ransom, described by Pitts as “several several several millions of dollars,” was paid.

While the FBI advises against paying ransoms due to the potential for emboldening future attacks, they acknowledge the significant repercussions of non-payment. The attack on Fulton County was attributed to LockBit, a major Russian-based ransomware syndicate. Four months after the attack, the FBI indicted the group’s alleged leader, Dmitry Khorshev, known online as “LockbitSupp.” CBS News’ investigation into online hacker chat rooms revealed that Khorshev, while seemingly concerned about the FBI’s involvement, maintained his bravado, claiming to be “apolitical” and likening himself to a “wolf who eats the weakest.”

LockBit escalated its threats against Fulton County over several weeks, setting and missing multiple deadlines. Despite the pressure, Pitts followed the FBI’s advice and refused to pay the ransom, citing the responsibility of protecting taxpayer funds. Ultimately, the hackers ceased their activity, and Fulton County was able to restore its network. However, Pitts acknowledged the considerable risk involved and the ever-present threat of future attacks, recognizing the sophisticated nature of these criminal enterprises and their significant financial resources. The county’s successful avoidance of paying the ransom was, for now, a gamble that paid off.

Leave a Comment