Cyber Incident Victim: State of Alabama

On March 13, 2024, Governor Kay Ivey’s office publicly confirmed a cyber attack targeting certain Alabama state government websites. The incident began the prior afternoon, Tuesday, March 12, with attackers launching a denial-of-service campaign against these digital assets. State IT personnel detected the attack in progress and implemented defensive measures to prevent unauthorized access to sensitive data or systems. Officials explicitly stated that no data breaches occurred during the incident, confirming that attackers were successfully blocked from accessing confidential information. The governor’s office characterized the event as an attempted intrusion that was contained through coordinated response efforts. While critical systems remained operational throughout the attack, some public-facing websites experienced degraded performance as security teams worked to mitigate the disruption.

The state’s information technology department initiated a comprehensive investigation following the initial containment of the attack. This ongoing forensic examination aimed to determine the full scope of affected systems and identify potential vulnerabilities exploited during the incident. Throughout Wednesday, March 13, residual technical issues persisted, with multiple government websites operating at reduced speeds due to continued security protocols and monitoring activities. Public communications emphasized the defensive success in preventing data compromise while acknowledging the temporary service disruptions affecting citizens attempting to access certain online state resources. No further details regarding attack duration beyond the initial Tuesday afternoon timeframe or specific website names impacted were disclosed in the official statement.