London Daily

Focus on the big picture.
Wednesday, Jul 02, 2025

New Ransomware Group Exposes Vulnerability of DC Police’s Tech Infrastructure

New Ransomware Group Exposes Vulnerability of DC Police’s Tech Infrastructure

The expanding digital age has opened up a new lane of expenses, as some institutions are learning the hard way that having a dedicated cyber security staff and knowledge is a necessity. Hospitals and city and county governments have become easy targets for some global hackers.

A new ransomware developed by the Babuk hacker group has accessed the computer system of Washington, DC’s Metropolitan Police Department, a development which has since seen the group threaten to leak confidential files if they are not contacted within three days.

The DC police department confirmed in a Tuesday YouTube post that unauthorized access occurred, and that the FBI were now looking into the matter.


The files encrypted by the hack group included arrest history, housing and financial records, polygraph results and details about training and work history for some officers. Screenshots posted online included police reports, internal memos, mugshots and gang conflict reports.


Babuk claimed to have accessed over 250 GB of data from the police department in a signature ransom note that slammed the department on its slow computer software updates. The forum that the hacker group works under communicates in both English and Russian. In a message to the police department, the group indicated they were able to find vulnerabilities in the computer system that were not fixed by patch updates in time.

The DC police department is only one of the major targets to be hit by the Babuk cyberattack this year. Other victims include the UK-based Serco company that deals with COVID-19 testings and the NBA Houston Rockets.

A hack from Babuk usually includes a ransom note like the one pictured above, which is normally located in a file, labeled “How To Restore Your Files.txt,” and provides information on how the user can go about recovering their data.


Patches are updates, usually related to security that gets added onto a computer system to help fix-up any vulnerability. As the technological world is ever changing, there is always a newer, faster and more efficient way to handle data. Ransomware groups like Babuk often find ways to exploit these vulnerabilities by using different algorithms to communicate with computer systems through coding.

The algorithms used by hacking groups are known as ransomware since it requires a key to access the hijacked data, and the key is usually only known by the creators of the virus, which is how hackers are able to hold the data for ransom.

According to some critics, Babuk is only an “amateur” hacking group that uses the Eclliptic-Curve Diffie-Hellman (ECDH) algorithm to ensure that their own operating systems are secure and not easy to access or change.

ECDH algorithms require subtle changes to a file that make it difficult to access items unless the file holder can decode the information needed to decrypt the data and translate it in a way that the computer can successfully read.

Ultimately, this means the Metropolitan Police Department may or may not still have the ability to combat the ransomware if they are able to decode the common algorithm shared with the hacking group, which can possibly be found through suspected phishware.

Babuk operates on a ransomware-as-a-service (RaaS) model, meaning they are but a front for a much larger hacking affiliation since Babuk is known to use implementations of SHA256 hashing algorithm, which has links back to the US National Security Agency (NSA) and the ChaCha8 encryption that also has ties to US-based computer technology development.

Cyber space


According to AP, the Babuk group has only been discovered this year, but has so far hit 26 government agencies in the US, releasing data from 16 of them, thereby exposing the poor cyber security of most agencies. The group is known to target the agricultural, electronic, plastic surgery and dental health care and transportation sectors.

The groups most vulnerable to cybersecurity threats include schools, hospitals and state and municipal systems. In 2019, 113 state and municipal groups were hit by ransomware attacks, the most famous of which being the attack on voting infrastructure during the 2020 elections in Georgia. The largest cybersecurity attack so far has been the 2017 WannaCry cyberattack launched by the Democratic People’s Republic of Korea.

The Babuk group exposes the vulnerability of its targets, but usually asks for bitcoin payments below $100,000. The group has boasted that it does not attack hospitals or organizations that earn below $4 million, and that it mostly stays away from nonprofit organizations, except those associated with the Black Lives Matter movement and the LGBTQ communities.

Babuk has indicated that it will launch a dedicated leak site in the near future. The administration of US President Joe Biden has claimed that they are boosting efforts to shield the US cyberspace from hackers by analyzing the system’s vulnerabilities and pinpointing threats.

Newsletter

Related Articles

0:00
0:00
Close
Poland Implements Border Checks Amid Growing Migration Tensions
Political Dispute Escalates Between Trump and Musk
Emirates Airline Expands Market Share with New $20 Million Campaign
Amazon Reaches Milestone with Deployment of One Millionth Robot
US Senate Votes to Remove AI Regulation Moratorium from Domestic Policy Bill
Yulia Putintseva Calls for Spectator Ejection at Wimbledon Over Safety Concerns
Jury Deliberations in Diddy Trial Yield Partial Verdict in Serious Criminal Charges
House Oversight Committee Subpoenas Former Jill Biden Aide Amid Investigation into Alleged Concealment of President Biden's Cognitive Health
King Charles Plans Significant Role for Prince Harry in Coronation
Two Chinese Nationals Arrested for Espionage Activities Against U.S. Navy
Amazon Reaches Major Automation Milestone with Over One Million Robots
Extreme Heat Wave Sweeps Across Europe, Hitting Record Temperatures
Meta Announces Formation of Ambitious AI Unit, Meta Superintelligence Labs
Robots Compete in Football Tournament in China Amid Injuries
Trump Administration Considers Withdrawal of Funding for Hospitals Providing Gender Treatment to Minors
Texas Enacts Law Allowing Gold and Silver Transactions
China Unveils Miniature Insect-Like Surveillance Drone
OpenAI Secures Multimillion-Dollar AI Contracts with Pentagon, India, and Grab
Marc Marquez Claims Victory at Dutch Grand Prix Amidst Family Misfortune
Germany Votes to Suspend Family Reunification for Asylum Seekers
Elon Musk Critiques Senate Budget Proposal Over Job Losses and Strategic Risks
Los Angeles Riots ended with Federal Investigations into Funding
Budapest Pride Parade Draws 200,000 Participants Amid Government Ban
Southern Europe Experiences Extreme Heat
Xiaomi's YU7 SUV Launch Garners Record Pre-Orders Amid Market Challenges
Jeff Bezos and Lauren Sanchez's Lavish Wedding in Venice
Russia Launches Largest Air Assault on Ukraine Since Invasion
Education Secretary Announces Overhaul of Complaints System Amid Rising Parental Grievances
Massive Anti-Government Protests Erupt in Belgrade
Trump Ends Trade Talks with Canada Over Digital Services Tax
UK Government Softens Welfare Reform Plans Amid Labour Party Rebellion
Labour Faces Rebellion Over Disability Benefit Reforms Ahead of Key Vote
Jeff Bezos and Lauren Sánchez Host Lavish Wedding in Venice Amid Protests
Trump Asserts Readiness for Further Strikes on Iran Amid Nuclear Tensions
North Korea to Open New Beach Resort to Boost Tourism Economy
UK Labour Party Faces Internal Tensions Over Welfare Reforms
Andrew Cuomo Hints at Potential November Comeback Amid Democratic Primary Results
Curtis Sliwa Champions His Vision for New York City Amid Rising Crime Concerns
Federal Reserve Proposes Changes to Capital Rule Affecting Major Banks
EU TO HUNGARY: LET THEM PRIDE OR PREP FOR SHADE. ORBÁN TO EU: STAY IN YOUR LANE AND FIX YOUR OWN MESS.
Trump Escalates Criticism of Media Over Iran Strike Coverage
Trump Announces Upcoming US-Iran Meeting Amid Controversial Airstrikes
Trump Moves to Reshape Middle East Following Israel-Iran Conflict
Big Four Accounting Firms Fined in Exam Cheating Scandal
NATO Members Agree to 5% Defense Spending Target by 2035
Australia's Star Casino Secures $195 Million Rescue Package Amid Challenges
UK to Enhance Nuclear Capabilities with Acquisition of F-35A Fighter Jets
Russian Shadow Payments via Cryptocurrency Reach $9 Billion
Explosions Rock Doha as Iranian Missiles Target Qatar
“You Have 12 Hours to Flee”: Israeli Threat Campaign Targets Surviving Iranian Officials
×