Cyber Incident Victim: Village of Key Biscayne

On June 23, 2019, the Village of Key Biscayne, Florida, experienced a cyberattack described by officials as a "data security event." The incident prompted immediate operational disruptions, leading the municipality to temporarily shut down portions of its computer systems as a precautionary measure. Village Manager Andrea Agha confirmed the implementation of paper-based processes to maintain essential services during the outage. Forensic teams were engaged to investigate the scope and nature of the attack. By June 26, the village restored network operations, indicating a containment period of approximately three days. The emergency response required coordination with external IT specialists to manage recovery efforts.

The Village Council convened an emergency session on June 27 to address financial requirements for ongoing incident response, approving additional funding for the external IT vendor assisting with recovery. While the exact financial allocation remained undisclosed, the emergency measure underscored the operational urgency. The incident occurred amid a wave of cyberattacks targeting Florida municipalities, including Riviera Beach and Lake City, both of which publicly acknowledged ransomware infections and paid ransoms after failing to restore encrypted systems. Key Biscayne officials notably refrained from attributing the event to ransomware or disclosing data compromise specifics. No evidence suggested the village paid ransom demands, distinguishing its response from neighboring jurisdictions facing similar threats during that period.