Anne Arundel County buildings shut down following cyber attack

On February 24, 2025, Anne Arundel County, located in Maryland, announced the closure of its buildings due to a significant cyber incident affecting county services. The county officials reported that the issue originated from an external source, leading to operational disruptions that required immediate and precautionary measures. Cyber specialists indicated that the restoration of full services could span several days, leaving county employees uncertain about their work assignments. Despite the closures, Senior Activity Centers remained operational while AARP tax preparation services were canceled. The county's Department of Aging and Disabilities' Customer Service Centers were closed, but staff continued to manage inquiries through dedicated phone lines. Notably, public parks and recreational facilities were still open, allowing residents access to outdoor activities during the service disruptions. The county reassured the public that curbside recycling collections would continue as scheduled, even as recycling centers and landfills shut down temporarily. Various county departments, alongside cybersecurity specialists, began an extensive investigation into the incident to ascertain the full scope of its impact. As a result of these investigations, county officials emphasized the importance of limiting internet access and encouraged remote work wherever possible, particularly for telework-eligible employees. Critical guidance was provided for emergency and essential staff, who were directed to report for work as usual based on discussions with their supervisors concerning the availability of IT systems. As of now, the ramifications of the cyber incident remain under assessment, with local officials working diligently to restore normal operations and security. Further updates will be communicated as investigations progress and more information about the attack is made available. This incident highlights the growing concerns surrounding the security of public services and demonstrates the need for ongoing vigilance against cyber threats.