Anne Arundel County officials have confirmed a "cyber incident" that occurred in February as a ransomware attack. The incident led to the temporary closure of key county offices and potentially compromised personal health-related information. The incident was first identified due to suspicious activities targeting the county's computer network, and an investigation was swiftly initiated to address the problem, as reported by WMAR-2 News.
While the ongoing nature of the investigation has kept officials from disclosing the cost or whether a ransom was paid, it is clear that the attack originated from an external threat actor. Unauthorized access was gained between January 28 and February 22, with certain files accessed or downloaded without permission, according to a statement reported by Eye On Annapolis. The specific number of individuals affected remains undetermined, with the county committed to providing direct notifications to those affected as they are identified.
According to the county's statement, information potentially accessed includes full names, addresses, and medical diagnoses or conditions of individuals who sought treatment and services at the Anne Arundel County Department of Health. Importantly, there is no indication that financial data was compromised in the breach. The county stresses the importance of vigilance, urging individuals to monitor statements and reports for any unusual activity.
