Officials at the Albany County Airport Authority announced this week that a ransomware attack hit the New York airport and its computer management provider
The news of the attack was disclosed after
“Officials at the Albany County Airport Authority announced Thursday that the attack came to light after Schenectady-based
The infection was discovered on Christmas Day, the ransomware encrypted administrative files, but no personal or financial traveler data was exposed. Experts reported that the family of malware involved in the attack against
Operations at the Albany International Airport were not impacted by the attack, Transportation Security Administration and airline computers were not affected too.
The sad aspect of the story is that the airport authority decided to pay the ransom with the economical coverage of the insurance carrier. Officials did not reveal the amount of the ransom, they only revealed that it was “under six figures.”
“The authority’s insurance carrier authorized payment of the ransom, which airport CEO Philip Calderone only said was “under six figures.”” reported the Times Union. “The ransom was paid in Bitcoin. The airport authority will seek to recover the $25,000 deductible it paid on its insurance policy from
The authority paid the ransom on December 30, and crooks sent it the decryption key a few hours later.
“Thanks to the fast action by our IT department, airport operations during one of the busiest travel periods of the year were not impacted and no passenger or airline data
The authority reported the incident to the local authorities and law enforcement, including New York State Cyber Command and the FBI.
“Historical records show the VPN server used by Albany County Airport Authority (
(SecurityAffairs – ransomware, airport)
Necessary cookies are absolutely essential for the website to function properly. This category only includes cookies that ensures basic functionalities and security features of the website. These cookies do not store any personal information.
Any cookies that may not be particularly necessary for the website to function and is used specifically to collect user personal data via analytics, ads, other embedded contents are termed as non-necessary cookies. It is mandatory to procure user consent prior to running these cookies on your website.