Connect with us

Published

1 year ago

on

Ransomware has long been plaguing American municipalities. It appeared to be another typical ransomware attack that impacted the city of Columbus, Ohio, this past July. The city’s response to the hack, however, was not, and it has cybersecurity and legal experts across the country questioning its motives.

Connor Goodwolf (legal name is David Leroy Ross) is an IT consultant who plumbs the dark web as part of his job. “I track dark web-type crimes, criminal organizations, and stuff like what the Telegram CEO has been arrested for,” Goodwolf said.

So when word got out that the city of Columbus, his hometown, had been breached, Goodwolf did what he does: he poked around online. It didn’t take him long to discover what the hackers had in their possession.

“It wasn’t the biggest, but it was one of the most impactful breaches I have seen,” Goodwolf said.

In some ways, he described it as a routine breach, with personal identifiable information, protected health information, Social Security numbers and driver’s license photos exposed. However, because multiple databases were breached, it was more encompassing than other attacks. According to Goodwolf, the hackers had breached multiple databases from the city, the police, and the prosecutor’s office. There were arrest records and sensitive information about minors and domestic violence victims. Some of the breached databases, he says, went back to 1999. 

Goodwolf found over three terabytes of data that took over 8 hours to download.

“The first thing I see is the prosecutor’s database, and I’m like ‘holy sh-t’ these are domestic violence victims. When it comes to domestic violence victims, we need to protect them the most because they have already been victimized once, and now they are again by having their information exposed,” he said.

Goodwolf’s first action was to contact the city to let them know how serious the breach was, because what he saw contradicted official statements. At a press conference on August 13,  Columbus Mayor Andrew Ginther said: “The personal data that the threat actor published to the dark web was either encrypted or corrupted, so the majority of the data came by the threat actor is unusable.”

But what Goodwolf was finding didn’t support that view. “I tried to reach out to the city multiple times to multiple departments and was blown off,” he said.

Google-owned Mandiant, as well as many other top cybersecurity firms, have been tracking a continued increase in ransomware attacks, both in prevalence and severity, and the rise of the Rhysida Group behind the Columbus hack, which has come into prominence within the last year.

The Rhysida Group claimed responsibility for the hack. While not much is known about the cyber gang, Goodwolf and other security experts say they appear to be state-sponsored and based in Eastern Europe, possibly linked to Russia. Goodwolf says these ransomware gangs are “professional operations” with a staff, paid vacation, and PR people.

“They have ramped up the attacks and targets since last autumn,” he said.

The U.S. government’s Cybersecurity and Infrastructure Security Agency issued a bulletin about Rhysida last November.

Goodwolf said that because no one from the city responded to him he went to the local media and shared data with journalists to get the word out about the seriousness of the breach. And that is when he heard from the city of Columbus, in the form of a lawsuit and a temporary restraining order preventing him from disseminating additional information. 

The city defended its response in a statement to CNBC:

“The City initially moved to obtain this order, which was granted by the Court, to prevent the dissemination of sensitive and confidential information, potentially including the identities of undercover police officers, that threatens public safety and criminal investigations.”

The city’s temporary 14-day restraining order against Goodwolf has since expired, and now it has a preliminary injunction and an agreement with Goodwolf not to release more data.

“It should be noted that the Court order does not prohibit the defendant from discussing the data breach or even describing what kind of data was exposed,” the city’s statement added. “It simply prohibits the individual from disseminating the stolen data posted on the dark web. The City remains engaged with federal authorities and cyber security experts to respond to this cyber intrusion.”

Meanwhile, the mayor did have to perform a mea culpa at a subsequent press conference, saying his initial statements were based on the information he had at the time. “It was the best information we had at the time. Clearly, we discovered that that was inaccurate information and I have to accept responsibility for that.”

Realizing the exposure to residents was greater than first thought, the city is offering two years of free credit monitoring from Experian. This includes anyone who has had contact with the city of Columbus via an arrest or other business. Columbus is also working with Legal Aid to see what additional protections are needed for domestic violence victims who may have been compromised or need help with civil protection orders.

To date, the city has not paid the hackers, who were demanding $2 million in ransom.   

‘He’s Not Edward Snowden’

Those who study cybersecurity law and work within the realm expressed surprise at Columbus filing a civil lawsuit against the researcher.

“Lawsuits against data security researchers are rare,” said Raymond Ku, professor of law at Case Western Reserve University. On the rare occasion they do happen, he said, it is usually when the researcher is alleged to have disclosed how a flaw was or can be exploited, which would then allow others to take advantage of the flaw as well.

“He wasn’t Edward Snowden,” said Kyle Hanslovan, CEO of cybersecurity company Huntress, who described himself as troubled by the city of Columbus’s response and what it could mean for future breaches. Snowden was a government contract employee who leaked classified information and faced criminal charges, but considered himself a whistleblower. Goodwolf, Hanslovan says, is a Good Samaritan who independently found the breached data.

“In this case, it appears we have just silenced someone who, as far as I can tell, appears to be a security researcher who did the bare minimum and confirmed the official statements made were not true. This can’t possibly be an appropriate use of the courts,” Hanslovan said, predicting the case will be quickly overturned.

Columbus City Attorney Zach Klein said during a September press conference that the case was “not about freedom of speech or whistleblowing. This is about downloading and disclosure of stolen criminal investigatory records.”

Hanslovan worries about the ripple effect where cybersecurity consultants and researchers are afraid to do their jobs for fear of being sued. “The bigger story here is are we seeing the emergence of a new playbook” for hacking response in which individuals are silenced, and that should not be welcomed, he said. “Silencing any opinion, even for 14 days, could be enough to prevent something credible from coming to light, and that terrifies me,” Hanslovan said. “That voice needs to be heard. As we see bigger cybersecurity incidents come up, I am worried that folks will be more concerned bringing them to light.”

Scott Dylan, founder of United Kingdom-based venture capital firm NexaTech Ventures, also thinks the actions of the city of Columbus could induce a chilling effect on the field of cybersecurity.

“As the field of cyberlaw continues to mature, this case is likely to be referenced in future discussions about the role of researchers in the aftermath of data breaches,” Dylan said.

He says legal frameworks must evolve to keep pace with the sophistication of both cyberattacks and the ethical dilemmas they generate, and the approach taken by Columbus is a mistake.

Meanwhile, the legal process will grind on for Goodwolf. Despite Columbus and Goodwolf reaching an agreement last week on the dissemination of information, the city is still suing him for damages in a civil suit that could reach $25,000 or higher. Goodwolf is representing himself in his talks with the city, though says that he has a lawyer on standby, if needed.

Some residents have filed a class-action lawsuit against the city. Goodwolf says that 55% of the information breached has been sold onto the dark web, while 45% is available for anyone with the skills to access it.

Dylan thinks the city is taking a big risk, even if its actions may be legally defensible, by creating the appearance of an attempt to silence discourse rather than encourage transparency. “It’s a strategy that could backfire, both in terms of public trust and future litigation,” he said.

“I am hoping the city realizes the mistake of filing a civil suit and the implications not just on security,” Goodwolf said, noting that Intel is building a $1 billion facility in a Columbus suburb. In recent years, the city has been positioning itself as a new tech hub in the Midwest, and attacking white hats and cybersecurity researchers, he said, could cause some in the tech sector to rethink it as a location.

Related Topics:
Continue Reading

Technology

Workday stock slips on light quarterly margin guidance

Published

3 hours ago

on

November 25, 2025

By

Workday stock slips on light quarterly margin guidance

Workday CEO Carl Eschenbach, right, walks to the morning session during the Allen & Co. Media and Technology Conference in Sun Valley, Idaho, on July 11, 2025.

David Paul Morris | Bloomberg | Getty Images

Workday shares slid more than 5% in extended trading Tuesday after the finance and human resources software maker issued quarterly margin guidance that came in below Wall Street projections.

Here’s how the company did in comparison with LSEG consensus:

  • Earnings per share: $2.32 adjusted vs. $2.18 expected
  • Revenue: $2.43 billion vs. $2.42 billion expected

The company forecast a fourth-quarter adjusted operating margin of at least 28.5% and $2.355 billion in subscription revenue, according to a statement. The StreetAccount consensus was a 28.7% margin and $2.35 billion in subscription revenue.

Workday’s revenue grew about 13% year over year in the quarter, which ended on Oct. 31. Net income of $252 million, or 94 cents per share, was up from $193 million, or 72 cents per share, in the same quarter a year ago.

Subscription revenue in the third quarter totaled $2.24 billion, with an adjusted operating margin of 28.5%. Analysts polled by StreetAccount had anticipated $2.24 billion in subscription revenue and a 28.1% margin.

During the fiscal third quarter, Workday announced artificial intelligence agents for analyzing employee performance testing financial health, and the company revealed plans to buy AI and learning software startup Sana for $1.1 billion. Also, activist investor Elliott Management said it had built a Workday stake worth over $2 billion.

Workday has seen its stock decline this year as pundits discuss the risk of generative AI tools threatening the growth prospects for cloud software incumbents. Company shares have fallen 9% so far in 2025, while the Nasdaq Composite index has gained 19%.

WATCH: Workday CEO Carl Eschenbach: There’s a narrative that AI is eating into software, that is false

Workday CEO Carl Eschenbach: There's a narrative that AI is eating into software, that is false

Continue Reading

Technology

A third high-profile tech leader is leaving GM as part of a software-product restructuring

Published

4 hours ago

on

November 25, 2025

By

A third high-profile tech leader is leaving GM as part of a software-product restructuring

Mary Barra, Chair and CEO of General Motors (right to left), Mark Reuss, President, Sterling Anderson, Chief Product Officer, and Dave Richardson, Senior Vice President Software and Services Engineering at “GM Forward” on Wednesday, October 22, 2025 in New York.

GM

DETROIT – A third high-profile technology executive is leaving General Motors amid a restructuring of the automaker’s software and product businesses, CNBC has learned.

Baris Cetinok, GM senior vice president of software and services product management, will depart the company effective Dec. 12, the automaker confirmed Tuesday after an internal announcement to employees.

Cetinok is the third tech-turned-auto executive to leave GM in roughly a month as the company combines its vehicle software engineering and global product units under one organization, led by new Chief Product Officer Sterling Anderson.

“Baris has built a strong software product management team at GM. We’re grateful for his contributions and wish him continued success. With hardware and software engineering unified under Global Product, we’re integrating product management with engineering to accelerate the delivery of exceptional in-vehicle experiences,” GM said in an emailed statement to CNBC.

Cetinok, who joined GM in September 2023 after stints with companies such as Apple, Microsoft and Amazon, could not immediately be reached for comment. The announcement of his departure comes a month after he described his position as “a product person’s dream” in an interview with CNBC.

GM’s senior vice president of software and services engineering, Dave Richardson, and its head of GM artificial intelligence, Barak Turovsky, have also left the company since October. Richardson was with GM for more than two years, while Turovsky was hired in March.

GM Chief Product Officer Sterling Anderson during the automaker’s “GM Forward” event on Oct. 22, 2025 in New York City.

Michael Wayland / CNBC

Anderson left the self-driving company he cofounded, Aurora Innovation, to join GM. He told CNBC last month that in order for the automaker to succeed, software and product must be thought of as one and the same.

“That’s the point of the role, I think, is it brings together all of these pieces into a unified approach to how we do product going forward,” Anderson said during an Oct. 22 interview at a GM technology event in New York.

Anderson, a former McKinsey & Co. consultant who later led Tesla’s AutoPilot program, said his goal is to accelerate the pace of GM’s innovations.

When Anderson’s appointment with GM was announced in May, Cetinok said in a LinkedIn post he was “delighted to welcome” the executive to the company. GM CEO Mary Barra and GM President Mark Reuss also hailed Anderson as being equipped to “evolve” and “reinvent” the automaker’s operations.

The global automotive industry has battled for years to better integrate technology into vehicles – from their production to consumer-facing software and remote, or “over-the-air,” updates like Tesla pioneered.

GM has taken an aggressive approach to combat such challenges by hiring leaders from Tesla and technology companies such as Apple and Google. However, many times, such executives have had short tenures with the company.

Continue Reading

Technology

HP Inc shares fall on layoffs, weak guidance due to U.S. trade regulations

Published

4 hours ago

on

November 25, 2025

By

HP Inc shares fall on layoffs, weak guidance due to U.S. trade regulations

Enrique Lores, President and Chief Executive Officer of HP Inc. speaks at COMPUTEX forum in Taipei, Taiwan June 3, 2024.

Ann Wang | Reuters

PC and printer maker HP Inc. said Tuesday it’ll lower its headcount by 4,000 to 6,000 people, representing a cut of up to 10%. HP also issued a lower-than-expected earnings projection for the new fiscal year.

Shares of the company fell 6% in extended trading.

Here’s how HP did versus LSEG consensus estimates:

  • EPS: 93 cents adjusted vs. 92 cents expected
  • Revenue: $14.64 billion vs. $14.48 billion expected

HP’s revenue increased 4% year over year in the quarter, which ended on Oct. 31, according to a statement. Net income of $795 million, or 84 cents per share, was up from $763 million, or 80 cents per share, in the same quarter a year ago.

For the first quarter of HP’s fiscal 2026, the company called for 73 cents to 81 cents in adjusted net earnings per share, while the LSEG consensus was 79 cents. For all of fiscal 2026, HP sees $2.90 to $3.20 in adjusted per share, below the LSEG consensus of $3.33.

“HP’s outlook reflects the added cost driven by the current U.S. trade-related regulations in place, and associated mitigations,” the company said in the statement.

The company’s personal systems unit that includes desktop and laptop computers contributed $10.35 billion in revenue, up 8% and above StreetAccount’s $10.15 billion consensus.

HP said it expects to complete the headcount reduction by the end of fiscal 2028. The company said the restructuring will result in savings of at least $1 billion in annualized gross run rate by the end of fiscal 2028. HP said it expects to incur about $650 million in charges, of which $250 million will happen in fiscal 2026.

“As we look ahead, we see a significant opportunity to embed AI into HP to accelerate product innovation, improve customer satisfaction and boost productivity,” HP CEO Enrique Lores said on a conference call with analysts.

Corporate executives across industries are hoping to draw on generative artificial intelligence products to speed up software developers and automate customer service. Cloud providers are buying large supplies of memory to meet computing demand from companies that build AI models, such as Anthropic and OpenAI, leading to a rise in the cost per gigabyte of RAM this year.

HP, whose headcount stood at 58,000 as of December, announced a similarly sized round of layoffs in 2022. Several other technology companies have announced layoffs in recent months as U.S. consumers face higher prices and interest rates.

“Memory costs are currently 15 to 18% of the cost of a typical PC, and while an increase was expected, its rate has accelerated in the last few weeks,” Lores said.

The company does expect to benefit after Microsoft stopped supporting its Windows 10 operating system in October, which will lead people to buy new machines, Lores said. Around 60% of HP’s installed base has moved to Windows 11, he said.

HP’s printing business did $4.3 billion in revenue, down 4%. The pricing environment is competitive, and customers are putting off purchases of new models, said Karen Parkhill, the company’s finance chief.

As of Tuesday’s close, HP shares were down 25% for the year, while the S&P 500 index has gained 15% in the same period.

WATCH: HP CEO: Tariffs are mostly nonmaterial

HP CEO: Tariffs are mostly nonmaterial

Continue Reading

Trending