Cyber Incident Victim: Bernards Township
Date:
May 2020
Location:
United States of America
Summary
A municipality experienced a ransomware attack that disrupted its computer systems and website, causing operational impacts. The incident involved unknown perpetrators who compromised municipal infrastructure, but most services were restored to normal functionality following recovery efforts. The attack did not result in prolonged downtime, with critical operations returning online after remediation. No additional details regarding data compromise, ransom demands, or specific technical vectors were disclosed in available reporting.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On May 11, 2020, Bernards Township, New Jersey, experienced a ransomware attack targeting municipal computer systems. Unknown hackers deployed malicious software that disrupted township operations, though specific technical details about the attack vector or ransom demands were not disclosed in available reports. The incident compromised the functionality of critical systems, including the township's official website, which became inaccessible following the breach. Municipal staff encountered operational challenges as the ransomware encrypted data or locked access to essential services. No immediate public statements were released in the immediate aftermath of the attack while internal assessments and containment efforts were underway.
By June 1, 2020, Mayor James Baldassare Jr. confirmed that most computer operations had been restored following three weeks of recovery efforts. The township's website resumed normal functionality alongside other affected municipal systems, indicating successful remediation of the ransomware's impacts. Officials characterized the event as a disruptive cyberattack but did not disclose whether data exfiltration occurred or if ransom payments were made. The restoration timeline suggests coordinated efforts involving IT personnel, though specific response actions such as system isolation, malware eradication, or data restoration procedures were not detailed publicly. No additional information was provided regarding the attackers' identity, motivations, or the township's long-term cybersecurity adjustments following the incident.