Cyber Incident Victim: Delaware Libraries

A ransomware attack disrupted Delaware's public library system in late August 2024, forcing the statewide shutdown of all public internet services. The incident began at least one week prior to September 1, when libraries posted physical notices warning patrons against using Wi-Fi and declaring all public computers inoperable. State library officials confirmed the cyberattack disabled internet access across all branch locations, though physical materials remained available for checkout. The attack prevented residents from accessing online resources, research databases, and public computer workstations typically provided by libraries. No restoration timeline was provided by authorities at the time of reporting.

Cybersecurity expert Matt Barnett of Sevn-X, while not involved in the investigation, characterized the incident as a financially motivated ransomware operation likely originating from Russia or Eastern Europe. He assessed that attackers employed broad phishing campaigns targeting multiple organizations globally, with Delaware's library system being one opportunistic victim rather than a specifically targeted entity. The attackers' operational methodology aligned with typical ransomware patterns of exploiting "low-hanging fruit" through social engineering tactics. State officials did not confirm whether patron data was compromised during the breach when questioned by media. Library operations continued for non-digital services including physical book circulation, reference assistance, and facility access during the outage. The cyberattack's full scope and recovery efforts remained under investigation as of September 1.