The CEO of Albany Airport told the Times Union that the ransomware incident happened in the early hours of December 25th 2019, when the attackers infiltrated the facility’s maintenance servers with the Sodinokibi Ransomware. The servers are managed by Logical Net, a cloud and hosting managed service provider based in Schenectady, New York.
Logical Net’s CEO Tush Nikollaj told the Daily Gazette newspaper, that while the attack came through his company’s management systems, the airport is responsible for protecting its back-up servers and internal IT.
The ransomware then spread to other systems and encrypted files, including back-up storage systems. The cybercriminals did not access airline customers’ information, including credit card numbers and other data.
According to reports the authority’s insurance carrier authorized payment of the ransom, which airport CEO Philip Calderone said was “under six figures.” The ransom was paid in Bitcoin.
Albany International Airport is located in Albany County, New York, United States. It is owned by the Albany County Airport Authority.