Cyber Incident Victim: New Bedford Police Department

On January 27, 2022, the New Bedford Police Department in Massachusetts disclosed it had been targeted by a ransomware attack earlier that day. The incident impacted a limited number of individual workstations and internal servers specifically used by the police department, with no spread to other municipal systems or city departments. Critical public safety infrastructure, including the 911 emergency response system, remained fully operational throughout the incident, and no service disruptions or user access issues were reported. Investigators determined the attack did not result in unauthorized access to or exfiltration of sensitive data. Notably, the department confirmed it never received a ransom demand from the threat actors, distinguishing this incident from many typical ransomware operations where payment demands accompany system encryption. The confined nature of the compromise suggested either rapid containment measures or limitations in the attackers’ ability to propagate laterally across the network.

In response to the attack, the police department immediately activated its predefined cybersecurity incident response plan to isolate affected systems and mitigate further risks. Federal law enforcement agencies were notified to assist with forensic analysis and investigation, though no specific attribution or actor details were publicly released. Department officials emphasized transparency by promptly issuing a public statement outlining the attack’s scope and confirming the integrity of emergency services. While operational disruptions appeared minimal based on available reports, the incident underscored the persistent threat of ransomware to public sector entities. The police department used the event to reinforce broader awareness, stating such attacks could target organizations of any size or function, and highlighting the importance of preparedness measures in reducing potential impacts without prescribing specific mitigation strategies.