Cyberattacks Hit Government Services in Ohio, Oklahoma, and Puerto Rico

In the past week, cybercriminals have targeted government systems across several U.S. states and Puerto Rico, disrupting essential services for thousands of residents.

Ransomware Hits Durant, Oklahoma

The city of Durant, Oklahoma, home to over 20,000 people and the capital of the Choctaw Nation, was struck by a ransomware attack over the weekend. As of Tuesday, the city’s website remains offline. Officials said they are working with law enforcement to investigate the incident and restore services.

Key city services, including online and credit card payments, are still affected. The local police department also reported network outages at its communication center, warning that 911 emergency services are still working but wait times may be longer than usual.

Durant joins a growing list of Native American governments targeted by ransomware this year. Similar attacks in Minnesota and Michigan were previously linked to the RansomHub gang.

Abilene, Texas Still Recovering

Meanwhile, the city of Abilene, Texas, continues to recover from a ransomware attack that began on April 18. Hackers threatened to leak 477 GB of stolen data if a ransom wasn’t paid. City officials refused to pay and are now replacing all their servers, computers, and other systems. They expect full recovery to take several more months.

Cyberattack Disrupts Lorain County, Ohio

Just two days before Durant’s incident, Lorain County in Ohio, with over 315,000 residents, was hit by a separate cyberattack. The county was forced to shut down dozens of systems, including local courts. Emergency services remained available, and courts reopened on Sunday. The county has hired cybersecurity experts to investigate the breach.

This is not the first cyberattack in Ohio this year. Cleveland’s municipal court was shut down for weeks earlier in 2024, and a July 2023 attack in Columbus exposed data from more than 500,000 residents.

Justice Department Targeted in Puerto Rico

In Puerto Rico, the Department of Justice reported a cyberattack affecting its Criminal Justice Information Office. As a precaution, the department temporarily stopped issuing criminal record certificates and paused some services. Officials said systems will only be restored once they are confirmed secure.

It’s unclear whether federal agencies like the FBI or the Cybersecurity and Infrastructure Security Agency (CISA) are involved in the response.

These attacks highlight the growing threat of ransomware on local and regional governments, which often struggle to defend against sophisticated cybercriminal groups. Recovery can take months, and the effects on public services are widespread and costly.