The Port of Seattle has begun notifying approximately 90,000 individuals that their personal data was compromised during a ransomware attack in August 2024.
The incident occurred on August 24, leading to the isolation of key systems and disrupting operations across various facilities, including the Seattle-Tacoma International Airport (SEA), Fishermen’s Terminal, and the public marinas managed by the Port.
By mid-September, officials confirmed the attack was carried out using ransomware and attributed the breach to the Rhysida group. The hackers reportedly demanded a ransom of $6 million, which the Port refused to pay. Days later, Rhysida listed the Port on its Tor-based leak site, claiming to have stolen more than 3 terabytes of data, which they began auctioning and later partially leaked online.
On April 3, the Port disclosed that the compromised data included sensitive personal information such as names, dates of birth, Social Security numbers, driver’s license and other government ID numbers, as well as medical details. The breach primarily affected older systems used for managing employee, contractor, and parking data. Fortunately, systems that handle passenger payment processing were not impacted.
According to the Port, the vast majority of affected individuals—around 71,000—are residents of Washington State and consist mainly of current and former Port employees, airport staff, and contractors.
To support those impacted, the Port is offering one year of complimentary credit monitoring and identity theft protection services.
The Port of Seattle also emphasized that the ransomware attack did not impact the proprietary systems of its airline, cruise, or federal partners. Importantly, officials assured the public that the incident did not compromise the safety or functionality of travel operations.
According to the Port, the attack had no effect on the ability to safely travel to or from Seattle-Tacoma International Airport or on the safe use of its maritime facilities. Despite the breach and system disruptions, essential travel and port activities continued without risk to passengers or operations.
Found this article interesting? Follow us on X(Twitter) and FaceBook to read more exclusive content we post.
