City of Suffolk Stops Ransomware Encryption Following CISA Alert

The City of Suffolk, a municipal government in Virginia, reports a ransomware attack and subsequent data breach after a notification from the Cybersecurity and Infrastructure Security Agency (CISA) on February 25, 2026. 

Threat actors gained access to the city's network on February 24, 2026, and attempted to run ransomware to encrypt internal systems. City IT staff and third-party cybersecurity experts detected the activity and terminated the unauthorized access shortly after the CISA alert. 

The city says they successfully prevented the full deployment of ransomware but the attackers managed to steal data from the network. The compromised data includes:

• Full names or first initial and last names
• Social Security numbers
• Passport numbers
• Financial account information

The number of affected individuals is 53. Officials notified the FBI's Cyber Division and the Virginia Fusion Center to assist with the investigation. The city also implemented stronger security policies and additional safeguards to prevent future unauthorized access. Affected individuals are being notified and provided with instructions on how to obtain free credit reports.