The City of St Paul in the US suffered a ransomware attack attributed to the threat actor interlock, which exploited the city’s gross negligence regarding cybersecurity, resulting in extensive infrastructure damage and significant financial losses. As a consequence, residents’ personal data was compromised, impacting approximately 310,992 people in Saint Paul, Minnesota, part of the Minneapolis-Saint Paul metropolitan area. #UnitedStates
Incident Details
- Victim: City of St Paul
- Country: US
- Actor: interlock
- Source: http://xqcx7b57dd5vrqllokebwuvub4hk3viktn4lsgyt2bg67oujd42xolqd.onion/index.php?p=
- Discovered: 2025-08-11 18:50:29.885043
- Published: 2025-08-11 18:50:15.340814
Information
- The City of St Paul experienced a ransomware attack caused by the actor Interlock.
- The city’s government and employees showed a lack of care and responsibility regarding cybersecurity.
- As a result, significant parts of the city’s infrastructure were damaged, leading to substantial losses and damages.
- Residents were heavily affected, with their data compromised and exposed on the internet.
- Saint Paul has a population of approximately 310,992 people and is part of the Minneapolis-Saint Paul metropolitan area.
Disclaimer: This post is based on public claims made by the ransomware group "interlock". I cannot confirm the accuracy of the information. However, I would be happy to share any official statement from the affected organization to provide clarification.