Cyber Incident Victim: City of Beckley
Date:
Jan 2024
Location:
United States of America
Summary
The City of Beckley experienced a cyberattack affecting its computer network, prompting an investigation into the incident’s origin, scope, and potential data compromise. Officials acknowledged network disruptions but did not confirm ransomware involvement or attribute the attack to any group, while the mayor noted ongoing recovery efforts without specifying a restoration timeline. The incident reflects broader trends of cyberattacks targeting small municipal governments, with impacts including operational disruptions and unresolved concerns about data exposure.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
The City of Beckley, West Virginia, announced on Thursday, January 1, 2024, that its computer network had been compromised in a cyberattack. City officials stated they recently discovered issues with their network infrastructure but did not specify the exact date of initial detection or the nature of the technical anomalies that prompted the investigation. The city initiated a response focused on determining the attack’s origin, confirming its scope and impact, and assessing whether any data was accessed or exfiltrated. Officials publicly apologized for disruptions caused by the incident and directed inquiries to a dedicated email address ([email protected]) managed by the City of Beckley IT Department. Mayor Rob Rappold verified the cyberattack in communications with a local news outlet but could not provide an estimated timeline for restoring affected systems or returning operations to normal. The city’s announcement, made via a Facebook post, did not disclose which specific municipal services or systems were disrupted, though the reference to network-wide issues implied broad operational consequences. No ransomware claims or attacker identification details were confirmed, as officials declined to comment on whether the incident involved extortion or explicit threat actor communication.
Beckley, a city of approximately 17,000 residents serving as the hub of a metropolitan area with 115,000 people, faced the attack amid a broader trend of cyber incidents targeting U.S. municipalities in 2023. The city’s response remained in the investigative phase, with no public confirmation of data compromise or detailed impact assessments. Officials emphasized caution in avoiding speculation about data exposure until forensic analysis concluded, noting that all information on city servers—from routine administrative documents to personal data—remained under scrutiny. No service outages or emergency measures, such as declarations of local emergency or budget reallocations for recovery, were disclosed, contrasting with incidents in other municipalities like Huber Heights, Ohio, which faced prolonged disruptions and significant financial costs. The City of Beckley’s communications focused on assuring the public of ongoing diligence but provided no updates on containment measures, recovery progress, or potential costs associated with the incident beyond the initial acknowledgment and call for patience.