At 2 p.m. on September 27, 2018, the Port of San Diego issued an update with additional information from Chief Executive Officer Randa Coniglio regarding a cybersecurity incident that was first reported on Tuesday, September 25.
“The Port of San Diego is partnering with the Federal Bureau of Investigation (FBI) and the Department of Homeland Security (DHS) on the investigation of a serious cybersecurity incident first reported on Tuesday, September 25, 2018 that has disrupted the agency’s information technology systems. The Port also continues close communication and coordination with the U.S. Coast Guard. It is important to note that this is mainly an administrative issue and normal Port operations are continuing as usual. The Port remains open, public safety operations are ongoing, and ships and boats continue to access the Bay without impacts from the cybersecurity incident. While some of the Port’s information technology systems were compromised by the attack, Port staff also proactively shut down other systems out of an abundance of caution. As previously stated, the investigation has detected that ransomware was used in this attack. The Port can also now confirm that the ransom note requested payment in Bitcoin, although the amount that was requested is not being disclosed. As previously stated, the Port has mobilized a team of industry experts and local, regional, state and federal partners to minimize impacts and restore system functionality. The temporary impacts on service to the public are in the areas of park permits, public records requests, and business services. No further information is available at this time; updates will be provided as information is available,” said Port of San Diego CEO Randa Coniglio.