Winona County Declares Emergency Following Ransomware Attack

Winona County in Minnesota shut down its computer networks and phone systems after a ransomware attack hit the local government this week. Officials first noticed technical glitches on Thursday morning, which led to the cancellation of media briefings and virtual meetings. County Board Chair Chris Meyer signed a local emergency declaration on Friday to unlock state and federal aid and set up a command center.

The attack breached the internal networks and disabled access to police records software used by the Sheriff’s Office. The county’s wired internet connections failed but some staff maintained email access through wireless networks. 

Emergency services like 911 and fire response remain fully operational.

Any exposed data or number of affected individuals has not been disclosed.

The county is working with the FBI, the Minnesota Bureau of Criminal Apprehension, and cybersecurity experts from the Minnesota Counties Intergovernmental Trust. Investigators are currently testing systems and performing data forensics to find out how the attackers got in. The specific ransomware group and their financial demands remain unknown at this time.