Minnesota activates National Guard after capital city hit by cyberattack

Minnesota’s National Guard has been activated to help respond to a cyberattack that shut down municipal computer systems in St. Paul. — Image credit: Stephen Maturen/Getty Images

This recording was made using enhanced software.

Summary

'Coordinated' attack

Officials from St. Paul, Minnesota’s capital city, say a “sophisticated external actor” is to blame for a cyberattack on its systems.

Partial shutdown

St. Paul Mayor Melvin Carter says some city services, such as online bill paying, have been shut down in response to the cyberattack.

'Cyber forces'

Gov. Tim Walz signed an executive order permitting the National Guard’s cyber forces to aid the city in its response.

Full story

Minnesota’s National Guard has been activated to help respond to a cyberattack that shut down municipal computer systems in St. Paul, the state capital. The city also declared a state of emergency on Friday, July 25, after detecting “suspicious activity” on its internal systems.

In a press conference on Tuesday, July 29, St. Paul Mayor Melvin Carter blamed “a sophisticated external actor” for the “deliberate” and “coordinated” targeting of the city’s information infrastructure.

The city shut down its systems Monday, July 28, in an effort to contain the threat. Services, including bill paying through the city’s online portal, are currently unavailable. Wi-Fi in libraries and other city buildings has been shut down. Carter stressed, however, that emergency services like 911 remain fully operational.

Download the SAN app today to stay up-to-date with Unbiased. Straight Facts™.

Point phone camera here

“We recognize that these outages have created inconveniences for residents and city staff alike,” Carter said. “While these disruptions are difficult, they are necessary steps to limit exposure, preserve system integrity and protect sensitive information as our investigation and recovery efforts continue.”

Attacks on cities

Local governments have increasingly found themselves in the crosshairs of hackers, particularly those deploying ransomware. The cybersecurity firm Sophos reported in August that 34% of state and local government organizations were hit by ransomware in 2024. Cities targeted include Columbus, Ohio, where officials had to notify half a million people in 2024 that their information was exposed after a ransomware gang attempted to extort the city.

Attacks on city governments are common for ransomware gangs, cybersecurity analyst Dominic Alvieri told Straight Arrow News.

“No city or state is off limits,” Alvieri said. “Unfortunately, even the Minneapolis Public Schools suffered a significant attack a few years ago.”

National Guard’s role

Minnesota Gov. Tim Walz, D, said the National Guard’s “cyber forces” were deployed to “collaborate with city, state and federal officials to resolve the situation and mitigate lasting impacts.”

Walz signed an executive order that said the National Guard will assist St. Paul “until the emergency conditions caused by the cyberattack subside or until it is rescinded by proper authority.”

Carter said the city is also working with two cybersecurity firms, as well as the FBI, to “trace the source and scope of the breach” and support the city in its recovery.

Source of attack unknown

No group or individual has taken credit for the St. Paul attack, Alvieri said, and the hackers’ motives are unclear.

Carter said that while the city retains little information about residents, data regarding government employees could be at risk.

He said he is unaware of any ransom demands, even though the neighboring city of Minneapolis was targeted by a ransomware group in November 2024.

An analysis by Straight Arrow News of ransomware leak sites on the dark web found no acknowledgment of the attack.

Mikael Thalen (Tech Reporter)

Mikael Thalen is a tech reporter for Straight Arrow News, where he covers cybersecurity, surveillance, hacking and digital privacy.

Alan Judd (Content Editor) and Mathew Grisham (Digital Producer) contributed to this report.

Tags: Cybersecurity, Hackers, Minnesota, National Guard, ransomware, Tim Walz

Why this story matters

A cyberattack on St. Paul disrupted city services, highlighting growing threats to local government infrastructure and prompting a coordinated response from state, local and federal agencies to protect data and restore critical systems.

Cybersecurity threats

The attack underscores the rising frequency and complexity of cyber threats faced by local governments, with officials and experts noting that no city or state is immune to such incidents.

Service disruptions and data risk

Closure of online services and concerns about employee data exposure illustrate the tangible impact these attacks have on public operations and personal information security, affecting both city staff and residents.

Get the big picture

Synthesized coverage insights across 53 media outlets

Community reaction

Residents have faced inconvenience due to service outages, needing to use manual systems in libraries and for payments. City staff and labor unions have expressed concern about data safety and continuing payroll activities during the disruptions.

Context corner

Cyberattacks on municipalities have increased in recent years, with previous incidents affecting cities like Minneapolis and the Rhode Island public benefits system. Public-sector digital infrastructure often lags behind private industry in security and resources, increasing vulnerability.

Quote bank

"This was a deliberate, coordinated digital attack carried out by a sophisticated external actor intentionally and criminally targeting our city’s information infrastructure," said Mayor Melvin Carter. "We are committed to working alongside the City of Saint Paul to restore cybersecurity as quickly as possible," said Gov. Tim Walz.

Military

16 hrs ago

3 min read

Zelenskyy says Ukraine won’t cede land to Russia, rejecting Trump peace plan
Politics

21 hrs ago

3 min read

Rep. Jasmine Crockett files to run for US Senate after Texas redistricting
Politics

22 hrs ago

3 min read

Miami’s mayoral race could be latest test of the US political mood
Politics

23 hrs ago

2 min read

‘Know your rights’: Mamdani reminds immigrants they can refuse ICE

Sources

Bias comparison

Media outlets on the left frame the cyberattack as a deliberate, “coordinated digital attack” by a “sophisticated external actor,” emphasizing criminal intent and the necessity of government intervention, using emotionally charged terms like “huge” and “immobilizes” to underscore severity and justify deploying the National Guard.
Media outlets in the center adopt neutral language, concentrating on factual events such as the National Guard activation and state funding without sensationalism.
Media outlets on the right focus on security concerns and the “massive” scale of the attack, stressing St. Paul’s “impaired ability to provide vital services” while refraining from assigning motive, often adopting a more restrained tone but still highlighting government response as a sign of vulnerability.

Report an issue with this comparison

Media landscape

Click on bars to see headlines

53 total sources

Key points from the Left

St. Paul faced a cyberattack affecting its essential systems and services over the weekend, prompting Mayor Melvin Carter to shut down city IT systems on July 28.
Mayor Carter stated, "This was a deliberate, coordinated digital attack carried out by a sophisticated external actor intentionally and criminally targeting our city's information infrastructure."
In response, Gov. Tim Walz activated the Minnesota National Guard cyber unit to secure and restore the city's systems.
Emergency services remain operational, but WiFi is temporarily unavailable at St. Paul libraries and recreation centers, as noted by city officials.

Report an issue with this summary

No coverage from Far Left sources 0 sources
No coverage from Left sources 0 sources
See Hide headlines from Lean Left sources 5 sources

Key points from the Center

Minnesota Gov. Tim Walz issued an executive order Tuesday activating cyber protection support from the National Guard after a cyberattack targeted St. Paul, taking effect immediately.
Exceeding the City of St. Paul’s response capacity, Minnesota Governor Tim Walz activated the National Guard’s cyber protection support at the city’s request.
In St. Paul, officials disabled public Internet terminals and key network access to contain the threat, with most systems offline since Friday while emergency services like 911 remain operational.
At a press conference, Carter noted limited resident data and urged caution, stating the FBI is involved in the investigation and the city declared a state of emergency.

Report an issue with this summary

See Hide headlines from Center sources 24 sources

Key points from the Right

Minnesota Gov. Tim Walz activated the Minnesota National Guard on July 29 for cyber protection assistance following a cyberattack on St. Paul.
The cyberattack occurred on July 25 and targeted critical systems, causing significant disruptions to vital services in St. Paul, according to Walz's executive order.
Walz's office noted that the attack's magnitude and complexity exceeded St. Paul's response capacity, prompting the National Guard's involvement.
The Minnesota National Guard's cyber forces will work with city, state, and federal officials to restore cybersecurity and protect the safety of St. Paul's residents.

Report an issue with this summary