A good ransomware attack can cause significant problems. The city of Louisiana knows that all too well, as its problems have only just begun.

The initial Ryuk ransomware attack against the Louisiana infrastructure dates back to November 18.

Louisiana is a Ransomware Target

Nearly two weeks after being hit, very little progress has been made.

Although some services are accessible once again, the vast majority of them are still offline.

The targeted ransomware attack has proven to be quite a handful, and one that is very difficult to get rid of.

Some crucial agencies still affected include the OMV, the state’s Department of Health, and the Department of Public Safety.

Restoring services is hampered by the ransomware, as there are plenty of files missing and the overall backup management has been far from excellent. 

The culprits also took a deliberate approach by sending Ryuk to multiple agencies in the region in one campaign. 

While “only” 500 servers and 1,500 computers are affected, the recovery process has been slow going.

Recovering the lost data will be virtually impossible, and combined with older backups, can create a very big administrative problem. 

It is also not the first time the Louisiana region has to deal with a cyber incident this year.

In fact, it is the second wave of Ryuk ransomware making the rounds.

The first incident took place in July and even resulted in the Governor declaring a state of emergency. 

It remains to be seen if that scenario will come into play once again.