Critical Infrastructure Security, Threat Management, Malware, Ransomware

Lansing, Mich., utility admits paying ransomware demand

Officials with the Lansing Board of Water & Light (BWL) publicly acknowledged on Tuesday that the utility paid a cybercriminal operation $25,000 to regain control of its accounting and email systems in the days following an April 25 ransomware attack, according to a report by the Lansing State Journal.

“Paying the ransom was distasteful and disgusting, but sadly necessary,” said BWL GM Dick Peffley during a meeting of the BWL Board of Commissioners' Committee of the Whole, the Journal reported. The attack also forced the utility to shut down its phone lines, including one used for customer account inquiries, and took about a week to recover from, the report continued.

The $25,000 represented a small portion of the $2.4 million in costs BWL incurred due to the incident, all but $500,000 of which was covered by insurances. The costs went toward deploying an emergency response team, crisis management, mitigation efforts, cybersecurity personnel and improved technologies.

Bradley Barth

As director of multimedia content strategy at CyberRisk Alliance, Bradley Barth develops content for online conferences, webcasts, podcasts video/multimedia projects — often serving as moderator or host. For nearly six years, he wrote and reported for SC Media as deputy editor and, before that, senior reporter. He was previously a program executive with the tech-focused PR firm Voxus. Past journalistic experience includes stints as business editor at Executive Technology, a staff writer at New York Sportscene and a freelance journalist covering travel and entertainment. In his spare time, Bradley also writes screenplays.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.