Seattle Airport Hack Update: Hackers Demand $6M in Bitcoin for Stolen Files

As a seasoned crypto investor with over a decade of experience under my belt, I can’t help but feel a mix of intrigue and concern upon hearing about the ransomware attacks at Seattle-Tacoma International Airport and Oakland Airport. The fact that these cybercriminals are demanding ransoms in Bitcoin is a stark reminder of the increasing role cryptocurrencies play in our digital economy, for better or worse.


The individuals responsible for the recent cyber attack at Seattle-Tacoma International Airport have issued a ransom request, asking for approximately 100 Bitcoins, which is equivalent to around $6 million, in exchange for the stolen data.

However, what exactly was accessed and the nature thereof have not been determined.

Hackers Rhysida Ransomware Group Identified

On Wednesday morning, Lance Lyttle, head of aviation management at the airport, appeared before the US Senate’s Commerce, Science, and Transportation Committee. During the hearing, he stated that the ongoing investigation into the cyberattack has identified Rhysida as the culprits behind the ransomware attack.

Moreover, it was made clear that Rhysida was the culprit behind the cyberattack, and the Federal Bureau of Investigation (FBI) was spearheading an ongoing criminal investigation into the matter. This information was shared by Lance Lyttle, the aviation managing director at the port, during a Senate committee hearing in the United States.

Little indicated that the assault appeared to be confined within the airport, yet the hackers managed to encrypt a portion of the information.

Oakland Airport Defies Hackers’ Ransomware, Refuses Bitcoin Payment

On the very same day, hackers posted eight files that they had stolen from Port’s systems onto a hidden website known as the dark web. They made a threat to sell this data if their ransom of 100 Bitcoins for the information was not met, as reported by Lance Lyttle.

Little refrained from disclosing the contents of the files, yet he assured that the airport would contact anyone potentially affected by a data breach regarding their personal information.

According to port authorities, it’s inappropriate to spend taxpayer funds on ransom payments. The airport has been battling to recover normal operations following the cyberattack initiated on August 24. In addition, during August, the U.S. government transferred 10,000 Bitcoins valued at approximately $600 million to Coinbase Prime, leading some to speculate that this was for storage purposes. However, attorney Scott Jhonsson has shed light on the situation, revealing that, according to an earlier arrangement with crypto exchange Coinbase, the U.S. Marshals Service (USMS) is indeed liquidating the BTC for sale.

Despite minimal flight interruptions, issues arose with ticketing, self-service check-ins, and baggage management, occurring a week prior to Labor Day weekend. Smaller airline passengers were asked to utilize traditional paper boarding passes instead of digital options.

Read More

2024-09-19 19:55