Connect with us

Published

1 year ago

on

Ransomware has long been plaguing American municipalities. It appeared to be another typical ransomware attack that impacted the city of Columbus, Ohio, this past July. The city’s response to the hack, however, was not, and it has cybersecurity and legal experts across the country questioning its motives.

Connor Goodwolf (legal name is David Leroy Ross) is an IT consultant who plumbs the dark web as part of his job. “I track dark web-type crimes, criminal organizations, and stuff like what the Telegram CEO has been arrested for,” Goodwolf said.

So when word got out that the city of Columbus, his hometown, had been breached, Goodwolf did what he does: he poked around online. It didn’t take him long to discover what the hackers had in their possession.

“It wasn’t the biggest, but it was one of the most impactful breaches I have seen,” Goodwolf said.

In some ways, he described it as a routine breach, with personal identifiable information, protected health information, Social Security numbers and driver’s license photos exposed. However, because multiple databases were breached, it was more encompassing than other attacks. According to Goodwolf, the hackers had breached multiple databases from the city, the police, and the prosecutor’s office. There were arrest records and sensitive information about minors and domestic violence victims. Some of the breached databases, he says, went back to 1999. 

Goodwolf found over three terabytes of data that took over 8 hours to download.

“The first thing I see is the prosecutor’s database, and I’m like ‘holy sh-t’ these are domestic violence victims. When it comes to domestic violence victims, we need to protect them the most because they have already been victimized once, and now they are again by having their information exposed,” he said.

Goodwolf’s first action was to contact the city to let them know how serious the breach was, because what he saw contradicted official statements. At a press conference on August 13,  Columbus Mayor Andrew Ginther said: “The personal data that the threat actor published to the dark web was either encrypted or corrupted, so the majority of the data came by the threat actor is unusable.”

But what Goodwolf was finding didn’t support that view. “I tried to reach out to the city multiple times to multiple departments and was blown off,” he said.

Google-owned Mandiant, as well as many other top cybersecurity firms, have been tracking a continued increase in ransomware attacks, both in prevalence and severity, and the rise of the Rhysida Group behind the Columbus hack, which has come into prominence within the last year.

The Rhysida Group claimed responsibility for the hack. While not much is known about the cyber gang, Goodwolf and other security experts say they appear to be state-sponsored and based in Eastern Europe, possibly linked to Russia. Goodwolf says these ransomware gangs are “professional operations” with a staff, paid vacation, and PR people.

“They have ramped up the attacks and targets since last autumn,” he said.

The U.S. government’s Cybersecurity and Infrastructure Security Agency issued a bulletin about Rhysida last November.

Goodwolf said that because no one from the city responded to him he went to the local media and shared data with journalists to get the word out about the seriousness of the breach. And that is when he heard from the city of Columbus, in the form of a lawsuit and a temporary restraining order preventing him from disseminating additional information. 

The city defended its response in a statement to CNBC:

“The City initially moved to obtain this order, which was granted by the Court, to prevent the dissemination of sensitive and confidential information, potentially including the identities of undercover police officers, that threatens public safety and criminal investigations.”

The city’s temporary 14-day restraining order against Goodwolf has since expired, and now it has a preliminary injunction and an agreement with Goodwolf not to release more data.

“It should be noted that the Court order does not prohibit the defendant from discussing the data breach or even describing what kind of data was exposed,” the city’s statement added. “It simply prohibits the individual from disseminating the stolen data posted on the dark web. The City remains engaged with federal authorities and cyber security experts to respond to this cyber intrusion.”

Meanwhile, the mayor did have to perform a mea culpa at a subsequent press conference, saying his initial statements were based on the information he had at the time. “It was the best information we had at the time. Clearly, we discovered that that was inaccurate information and I have to accept responsibility for that.”

Realizing the exposure to residents was greater than first thought, the city is offering two years of free credit monitoring from Experian. This includes anyone who has had contact with the city of Columbus via an arrest or other business. Columbus is also working with Legal Aid to see what additional protections are needed for domestic violence victims who may have been compromised or need help with civil protection orders.

To date, the city has not paid the hackers, who were demanding $2 million in ransom.   

‘He’s Not Edward Snowden’

Those who study cybersecurity law and work within the realm expressed surprise at Columbus filing a civil lawsuit against the researcher.

“Lawsuits against data security researchers are rare,” said Raymond Ku, professor of law at Case Western Reserve University. On the rare occasion they do happen, he said, it is usually when the researcher is alleged to have disclosed how a flaw was or can be exploited, which would then allow others to take advantage of the flaw as well.

“He wasn’t Edward Snowden,” said Kyle Hanslovan, CEO of cybersecurity company Huntress, who described himself as troubled by the city of Columbus’s response and what it could mean for future breaches. Snowden was a government contract employee who leaked classified information and faced criminal charges, but considered himself a whistleblower. Goodwolf, Hanslovan says, is a Good Samaritan who independently found the breached data.

“In this case, it appears we have just silenced someone who, as far as I can tell, appears to be a security researcher who did the bare minimum and confirmed the official statements made were not true. This can’t possibly be an appropriate use of the courts,” Hanslovan said, predicting the case will be quickly overturned.

Columbus City Attorney Zach Klein said during a September press conference that the case was “not about freedom of speech or whistleblowing. This is about downloading and disclosure of stolen criminal investigatory records.”

Hanslovan worries about the ripple effect where cybersecurity consultants and researchers are afraid to do their jobs for fear of being sued. “The bigger story here is are we seeing the emergence of a new playbook” for hacking response in which individuals are silenced, and that should not be welcomed, he said. “Silencing any opinion, even for 14 days, could be enough to prevent something credible from coming to light, and that terrifies me,” Hanslovan said. “That voice needs to be heard. As we see bigger cybersecurity incidents come up, I am worried that folks will be more concerned bringing them to light.”

Scott Dylan, founder of United Kingdom-based venture capital firm NexaTech Ventures, also thinks the actions of the city of Columbus could induce a chilling effect on the field of cybersecurity.

“As the field of cyberlaw continues to mature, this case is likely to be referenced in future discussions about the role of researchers in the aftermath of data breaches,” Dylan said.

He says legal frameworks must evolve to keep pace with the sophistication of both cyberattacks and the ethical dilemmas they generate, and the approach taken by Columbus is a mistake.

Meanwhile, the legal process will grind on for Goodwolf. Despite Columbus and Goodwolf reaching an agreement last week on the dissemination of information, the city is still suing him for damages in a civil suit that could reach $25,000 or higher. Goodwolf is representing himself in his talks with the city, though says that he has a lawyer on standby, if needed.

Some residents have filed a class-action lawsuit against the city. Goodwolf says that 55% of the information breached has been sold onto the dark web, while 45% is available for anyone with the skills to access it.

Dylan thinks the city is taking a big risk, even if its actions may be legally defensible, by creating the appearance of an attempt to silence discourse rather than encourage transparency. “It’s a strategy that could backfire, both in terms of public trust and future litigation,” he said.

“I am hoping the city realizes the mistake of filing a civil suit and the implications not just on security,” Goodwolf said, noting that Intel is building a $1 billion facility in a Columbus suburb. In recent years, the city has been positioning itself as a new tech hub in the Midwest, and attacking white hats and cybersecurity researchers, he said, could cause some in the tech sector to rethink it as a location.

Related Topics:
Continue Reading

Technology

Trump signals he could speak to China’s Xi about Nvidia’s ‘super duper’ chips

Published

3 hours ago

on

October 29, 2025

By

Trump signals he could speak to China's Xi about Nvidia's 'super duper' chips

U.S. President Donald Trump speaks to journalists in Japan aboard Air Force One en route to South Korea on October 29, 2025.

Andrew Harnik | Getty Images News | Getty Images

U.S. President Donald Trump plans to discuss Nvidia’s advanced AI chips with Chinese President Xi Jinping during their widely expected meeting on Thursday, he told a media scrum Wednesday. 

While taking questions regarding his high-stakes meeting with Xi, Trump signaled that Nvidia’s Blackwell AI processors could be discussed. 

“We’ll be speaking about Blackwell, it’s the super duper chip,” he said. Nvidia’s “super duper chip” appeared to refer to the GB200 Grace Blackwell Superchip — its most advanced AI chip.

More broadly, Nvidia’s Blackwell architecture represents its latest generation of AI chips, or ‘graphics processing units,’ used to train and run large language models.

Trump went on to laud Nvidia’s Blackwell chips, claiming that they are about a decade ahead of any other chip.

“That’s our country. We’re about 10 years ahead of anybody else in chips — in the highly sophisticated chips. I think we may be talking about that with President Xi.” 

The comments come as Nvidia faces an uncertain future in China, once a lucrative market for the AI darling.

While export controls have long prevented Nvidia from selling its most advanced AI products to China, Washington had rolled back restrictions on the chipmaker’s less advanced, made-for-China H20 chips in July. 

Trump later indicated that he might also allow a downgraded version of Nvidia’s Blackwell chips into China.

But in a surprise move, Beijing recently stepped in to prevent its companies from importing Nvidia’s chips amid national security concerns regarding the company’s technology. As a result, Nvidia CEO Jensen Huang said earlier this month that the company is currently “100% out of China” and has no market share there.

However, many analysts view the Chinese ban as likely temporary, saying Beijing could be using Nvidia’s access to its market as leverage in its trade negotiations with the Trump administration.

Despite Trump’s remarks about Nvidia’s “super duper chip,” it seems more likely that a less advanced version would be on the table.

In August, Reuters reported Nvidia was developing a new chip for China — dubbed the B30A — that would be more powerful than the H20 and built on the Blackwell architecture.

Such a chip would hypothetically help Nvidia fend off growing competition from domestic players like Huawei, as Beijing accelerates its efforts to develop a self-sufficient AI environment.

However, semiconductor experts said a resumption of H20 exports, or an additional pathway for the B30A, would also help China’s AI ecosystem more broadly and undermine Washington’s strategy to curb Chinese access to cutting-edge computing, which began ramping up in 2022.

A report released earlier this week from the Institute for Progress, a U.S. think tank, argued that allowing B30A exports to China would dramatically shrink America’s current AI compute advantage over China.

Huang, who has long lobbied against U.S. chip restrictions, will reportedly be in South Korea at the same time as Trump this week. The Nvidia CEO is expected to make announcements with local partners, which Huang said would hopefully be “delightful to the people of Korea and really delightful to President Trump.”

Continue Reading

Technology

CNBC Daily Open: It’s a boom, it’s a bubble, it’s still not enough for investors: It’s AI

Published

5 hours ago

on

October 29, 2025

By

CNBC Daily Open: It's a boom, it's a bubble, it's still not enough for investors: It's AI

OpenAI CEO Sam Altman (L) speaks with Microsoft Chief Technology Officer and Executive VP of Artificial Intelligence Kevin Scott during the Microsoft Build conference at Microsoft headquarters in Redmond, Washington, on May 21, 2024. 

Jason Redmond | AFP | Getty Images

Investors can’t get enough of artificial intelligence, despite worries over the sector’s excessively high valuations.

The S&P 500, Dow Jones Industrial Average and Nasdaq Composite rose Tuesday stateside, with all three notching new intraday highs. The major averages were juiced by gains in tech. Nvidia popped nearly 5%, while Microsoft climbed roughly 2%.

Both Apple and Microsoft reached a market capitalization of over $4 trillion after their shares rose. It was the first time Apple hit that milestone, though it closed just shy of that level.

Tech companies can’t get enough of each other, either.

Nvidia announced a $1 trillion investment in Nokia, which the Finnish company said will go toward developing its AI plans. For those, like me, who remember Nokia as a company that made the most desirable and bullet-proof phones: It primarily produces cellular equipment now.

Meanwhile, with its 27% stake in OpenAI’s for-profit business, Microsoft is potentially sitting on a goldmine — provided AI finds its footing as a sustainable, revenue-generating business in the long run. OpenAI on Tuesday announced it had completed its restructuring as a nonprofit with a controlling stake in its for-profit arm.

It’s not just Microsoft. Investors who have poured money into tech could potentially gain big — as Cathie Wood of Ark Invest says, “If our expectations for AI … are correct, we are at the very beginning of a technology revolution.”

What you need to know today

And finally…

Jerome Powell, chairman of the US Federal Reserve, during the International Monetary Fund (IMF) and World Bank Fall meetings at the IMF headquarters in Washington, DC, US, on Thursday, Oct. 16, 2025.

Kent Nishimura | Bloomberg | Getty Images

The Fed has a rate cut plus a bunch of other things on its plate this week. Here’s what to expect

Markets are assigning a nearly 100% probability that the Federal Open Market Committee will approve a second consecutive quarter percentage point, or 25 basis point, reduction in the federal funds rate. The overnight lending benchmark is currently targeted between 4%-4.25%.

Beyond that, policymakers are likely to debate, among other things, the future path of reductions, the challenges posed by a lack of economic data and the timetable for ending the reduction in the Fed’s asset portfolio of Treasurys and mortgage-backed securities.

— Jeff Cox

Continue Reading

Technology

Nvidia-supplier SK Hynix third-quarter profit jumps 62% to a record high on AI-fueled memory demand

Published

7 hours ago

on

October 28, 2025

By

Nvidia-supplier SK Hynix third-quarter profit jumps 62% to a record high on AI-fueled memory demand

A man walks past a logo of SK Hynix at the lobby of the company’s Bundang office in Seongnam on January 29, 2021.

Jung Yeon-Je | AFP | Getty Images

South Korea’s SK Hynix on Wednesday posted record quarterly revenue and profit, boosted by a strong demand for its high bandwidth memory used in generative AI chipsets.

Here are SK Hynix’s third-quarter results versus LSEG SmartEstimates, which are weighted toward forecasts from analysts who are more consistently accurate:

  • Revenue: 24.45 trillion won ($17.13 billion) vs. 24.73 trillion won
  • Operating profit: 11.38 trillion won vs. 11.39 trillion won

Revenue rose about 39% in the September quarter compared with the same period a year earlier, while operating profit surged 62%, year on year.

On a quarter-on-quarter basis, revenue was up 10%, while operating profit grew 24%.

SK Hynix makes memory chips that are used to store data and can be found in everything from servers to consumer devices such as smartphones and laptops.

The company has benefited from a boom in artificial intelligence as a key supplier of high-bandwidth memory or HBM chips used to power AI data center servers. 

“As demand across the memory segment has soared due to customers’ expanding investments in AI infrastructure, SK Hynix once again surpassed the record-high performance of the previous quarter due to increased sales of high value-added products,” SK Hynix said in its earnings release. 

HBM falls into the broader category of dynamic random access memory, or DRAM — a type of semiconductor memory used to store data and program code that can be found in PCs, workstations and servers.

SK Hynix has set itself apart in the DRAM market by getting an early lead in HBM and establishing itself as the main supplier to the world’s leading AI chip designer, Nvidia

However, its main competitors, U.S.-based Micron and South Korean-based tech giant Samsung, have been working to catch up in the space.

“With the innovation of AI technology, the memory market has shifted to a new paradigm and demand has begun to spread to all product areas,” SK Hynix Chief Financial Officer Kim Woohyun said in the earnings release.

“We will continue to strengthen our AI memory leadership by responding to customer demand through market-leading products and differentiated technological capabilities,” he added.

The HBM market is expected to continue to boom over the next few years to around $43 billion by 2027, giving strong earnings leverage to memory manufacturers such as SK Hynix, MS Hwang, research director at Counterpoint Research, told CNBC.

“[F]or SK Hynix to continue generating profits, it’ll be important for the company to maintain and enhance its competitive edge,” he added.

A report from Counterpoint Research earlier this month showed that SK Hynix held a leading 38% share of the DRAM market by revenue in the second quarter of the year, increasing its shares after having overtaken Samsung in the first quarter. 

The report added that the global HBM  market grew 178% year over year in the second quarter, and SK Hynix dominated the space with a 64% share.

Continue Reading

Trending