This alert may not be shared outside your organization, Do Not Repost or send, place on other websites, List servers, or send to others via email, including other associations or parties.  Members and Law enforcement use only. Contact us for any permissions.  To do otherwise will result in the loss of membership.

Complete Story
 

08/13/2025

St. Paul cyberattack: Organization takes credit for ransomware attack on city, releases some data

KSTP 5 Minneapolis, MN

On Monday, St. Paul Mayor Melvin Carter provided an update regarding the ransomware attack on the city over two weeks ago.

RELATED: 3,500 St. Paul city employees begin password reset process; city confirms cyberattack was ransomware

The city is still working on fixing the cybersecurity breach, which happened on July 25 and crippled a variety of city services. It also put employees’ data at risk.

Mayor Carter would not say the name of the cyber thieves but confirmed on Monday that it’s a network called “Interlock.” The ransomware organization, which operates on the dark web, took credit for the attack on Monday.

Interlock is a “sophisticated” and “money-driven” organization, Carter said, adding that the group claimed to have stolen 43 GB of data from City of St. Paul systems.

Carter said the files that were taken mostly came from a “single, shared network drive” used by the parks and recreation department.

More Info

Printer-Friendly Version


Resources

Alerts

The FRPA alert system distinguishes us from other groups by gathering and providing information to law enforcement, retailers AND financial institutions.

more information
Resources

Resources

Your electronic library to help in fighting financial fraud for all of our partners.

more information