Hackers have demanded a ransom of $6 million in bitcoin from the Seattle-Tacoma International Airport following a cyberattack last month. The attackers posted stolen documents on the dark web this week and requested the payment. The Port of Seattle, which manages the airport, has chosen not to comply with the demand, as confirmed by an airport official on Wednesday. The FBI is now involved in investigating the incident, which was previously attributed to a ransomware group known as Rhysida.
According to Lance Lyttle, the port’s managing director of aviation, the airport seems to have halted the cyberattack, but some data was encrypted by the hackers. The attackers have posted eight files stolen from Port systems on their dark website and are demanding 100 bitcoin in exchange for the data. Lyttle did not specify the content of the documents but indicated that affected individuals would be contacted if their personal information was compromised.
Port officials have stated that paying the ransom would not be a responsible use of public funds. The airport is still in the process of recovering from the attack, which disrupted operations starting on August 24. Despite flight operations continuing, the cyberattack caused disruptions to ticketing, self-check-in kiosks, and baggage handling. Passengers on smaller airlines experienced inconvenience as they had to resort to using paper boarding passes.
In a related incident, the mayor of Columbus, Ohio, previously mentioned that Rhysida was responsible for a data breach in the city systems. The mayor downplayed the significance of the stolen data and stated that no ransom demand was made to the city in that particular case.