Unit 3 : Security Domains Involved
In this lesson, we'll be looking at the security domains that were involved in the attack on the City of Atlanta, which was initially detected on March 22 2018, as were one of the most affected parties.
SamSam has Infected approximately 3,789 computers belonging to the City of Atlanta, including servers and workstations
End Users
More than one-third of the software programs used by the city are offline or partially disabled due to the attack.
Physical Access
The ransomware effectively locked the infected computers and made it impossible to access the information stored on them without a decryption key.
(Healthcare IT systems in Atlanta were shut down to prevent the spread of the virus when the attack hit them.)
System
Several local government systems are down. Once the malware is deployed, the ransomware encrypted the files associated with each infected computer and displayed a ransom note
Organization
The attack significantly disrupted City of Atlanta operations, impaired certain governmental functions, and caused it to incur substantial expenses in the coming weeks and months