Large-scale data breach confirmed in Columbus, Ohio: 500,000 individuals' information affected by July ransomware attack
In the digital age, state and local governments continue to face a heightened risk of ransomware attacks. The rapid adoption of online public service platforms and remote work capabilities, accelerated by the COVID-19 pandemic, has increased their exposure to cyber threats and made them prime targets for cybercriminals.
Elections, particularly recent ones, have further amplified this threat. The digital transformation of electoral processes has made them attractive targets for disruption, aiming to undermine public trust or electoral processes. Over the past few years, hundreds of ransomware attacks have taken place, costing billions in downtime and recovery expenses.
Recent statistics show that ransomware attacks on government entities have been declining slightly, with a 15% decrease from May to June 2025. However, the U.S., as the main global target, still suffered 235 ransomware victims in June alone. Government entities are repeatedly attacked for access to critical data and disruption potential.
Despite these threats, state and local governments have been taking steps to improve their cyber defenses. Cyber insurance requirements have driven around 96% of these entities to upgrade their security postures.
However, a report from Suffolk County, New York, in September 2025, revealed that a ransomware attack occurred due to a lack of planning and ignored warnings. This incident underscores the importance of prevention, planning, and response in mitigating ransomware attacks.
In July 2025, the city of Columbus, Ohio, also experienced a ransomware attack. Although no publicly available information from recent 2025 sources explicitly cites ransomware attacks or breaches in Columbus, Ohio or Suffolk County, New York, the lack of recent incident reports suggests either they have not been publicly disclosed as ransomware victims recently or such incidents have not reached major media or cybersecurity disclosures by mid-2025.
The threat group responsible for the Columbus attack gained access to the city's IT environment. Ohio state officials provided financial resources and assistance in response to the attack, following similar attacks on both Columbus and Cleveland. Personal information of those affected by the attack is at risk.
The private sector is currently ahead of municipalities in terms of prevention, planning, and response to ransomware attacks. The reported cyber risk awareness among municipalities is still lagging compared to the private sector.
In conclusion, state and local governments remain prime targets for ransomware attacks due to their digital expansion and critical service roles. The threat of ransomware attacks continues to pose a significant risk to these entities, with attacks causing massive financial and operational disruptions nationwide. While governments are taking steps to improve their cyber defenses, continued vigilance and investment in cybersecurity are essential to protect against this persistent threat.
- Government entities, despite taking steps to enhance their cyber defenses, are still falling victim to ransomware attacks, with access to critical data and disruption potential being the primary motivations.
- The private sector has shown more readiness than municipalities in terms of preventing, planning, and responding to ransomware attacks, as cyber risk awareness among municipalities continues to lag.
- As state and local governments continue to expand digitally, they face an increased risk of ransomware attacks, which can cause massive financial and operational disruptions.
- A lack of planning and ignored warnings led to a ransomware attack in Suffolk County, New York, highlighting the importance of prevention, planning, and response in mitigating such threats.
