The Port of San Diego said Thursday it is partnering with the Federal Bureau of Investigation (FBI) and the Department of Homeland Security (DHS) to investigate what it referred to as “a serious cybersecurity incident” that has disrupted the agency’s information technology systems.
The investigation detected that ransomware was used in the attack, and the hackers also issued a ransom note requesting payment in Bitcoin, although the amount that was requested was not disclosed.
While some of the Port’s information technology systems were compromised by the attack, Port staff also proactively shut down other systems out of “an abundance of caution.”
The disruption is mainly an administrative issue and normal Port operations are continuing as usual, according to a statement by the Port of San Diego’s Chief Executive Officer Randa Coniglio. The Port remains open, public safety operations are ongoing, and ships and boats continue to access the Bay without impacts from the cybersecurity incident, she said.
The temporary impacts on service to the public are in the areas of park permits, public records requests, and business services.