Cyber Incident Victim: City of Dawson Creek
Date:
Jan 2020
Location:
Canada
Summary
The City of Dawson Creek experienced a ransomware attack that compromised its computer systems, resulting in the temporary encryption of municipal files and rendering them inaccessible. The incident was confirmed by the mayor, who stated the disruption affected operational access to critical data, though no additional consequences or data exfiltration details were disclosed in the initial report.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On January 8, 2020, the City of Dawson Creek experienced a cybersecurity incident involving unauthorized access to its computer systems. The attack, characterized as an apparent ransomware operation, resulted in the temporary encryption of municipal files, rendering critical data inaccessible to city personnel. The disruption impacted normal administrative operations, though the specific departments or services affected were not detailed in public statements. City officials detected the intrusion on the same day it occurred, prompting an immediate response to assess the scope of the compromise. Mayor Dale Bumstead formally acknowledged the incident through an online notice published on January 9, confirming the encryption of files and characterizing the event as a deliberate hacking attempt. The announcement did not specify whether the attackers issued a ransom demand or established communication with the city. No evidence of data exfiltration or theft was disclosed in the initial public reporting. The encryption’s temporary nature suggested municipal systems retained restoration capabilities, though the exact recovery mechanisms employed remained unspecified.
The city’s primary confirmed response action involved public disclosure through the mayor’s official statement within 24 hours of detecting the incident. Operational consequences included disrupted access to municipal files, though the duration of this disruption and the timeline for full restoration were not quantified in available sources. No third-party cybersecurity firms or law enforcement agencies assisting with the investigation were named in the initial report. The incident did not trigger reports of leaked citizen data or financial losses in subsequent public updates from the city. Dawson Creek’s transparency in promptly acknowledging the attack represented its principal documented mitigation measure, with no additional technical countermeasures or long-term operational changes described in the immediate aftermath. The ransomware’s origin, attack vector, and specific targeted systems remained unconfirmed in the publicly released information.