twitter icon youtube icon instagram icon

City of Tulsa Ransomware Update May 20

This article was archived on 7/11/2021

The City continues its ransomware response as crews work to get critical systems back online.

On Thursday, May 6, the City’s Information Technology Department received notice that some servers were actively communicating with a known threat site and a ransomware attack was initiated on several City systems. A cybersecurity incident response team was assembled to assess the threat and disconnected the affected servers. The team immediately began isolating the affected systems and  the attack moved quickly through the network, prompting the team to shut down all services to halt the attack.

As such, the City engaged an outside incident response team to assist with threat assessment as the forensic investigation began. Forensic data was handed over to that team and to law enforcement for further investigation.

The ransomware attack remains an ongoing investigation.

Following the attack, an Emergency Response Team assembled and initiated the City’s IT Disaster Recovery and Business Continuity Plan and advised departments to implement manual business processes as defined in their Continuity of Operations Plans until online services could be restored

Moving forward, the City’s main priority is to restore critical resources and mission-essential functions, which include public-facing systems and internal communications and network access functions. Business recovery teams have categorized and prioritized system restoration efforts and are continuing their work to restore and validate business system functionality.

The City expects some systems to come back online in the coming days and weeks, with other systems expected to take longer.

When there are updates to our public facing systems such as our online and electronic billing systems, we will alert the public right away.  As of today, the City is continuing to ask residents to wait until its electronic payment systems are restored before paying their utility bills.

Tulsa Parks Updates
Tulsa Parks’ online recreation systems continue to be unavailable due to the ransomware attack. Residents should contact centers directly by phone or visit a community center in person to enroll in recreation programs and Summer Day Camps. To confirm enrollment status in programs or Summer Day Camps, call your recreation center.

Summer Day Camps are available for students ages 6-11, and will run June 7, 2021, through Aug. 6, 2021, at all seven recreation centers across the city. 

Through a continuing partnership with The Opportunity Project, all Summer Day Camps will be offered at half of the traditional price, coupled with free admission at community pools this summer. 

To that end, the City is facing a shortage of lifeguard applicants. Tulsa Parks is looking for strong swimmers who are at least 16 years old. Those who don’t have the certification can work with the City’s Aquatics Planner to acquire this certification. Interested applicants should contact Nick Pond at to apply and schedule an interview.  

As of Thurs., May 20, phone lines are down at Hicks Park Community Center. Those needing to speak with a staffer can reach out to Tulsa Parks via Facebook, @TulsaParks, or via email at

Due to the ongoing ransomware attack, community centers can only accept cash, check or money order. Debit and credit cards cannot be accepted at this time.


Important City of Tulsa Contacts

Emergencies - 911

Citizen reporting and general questions (business hours, M-F) - 311 

Waterline breaks/sewer overflow emergencies - (918) 596-9488

Tulsa Police non-emergency calls - (918) 596-9222

Tulsa Fire smoke alarm installation requests - (918) 550-0623

Code enforcement and Fire Marshal-related questions - (918) 550-0493

Tulsa Animal Welfare appointments and stray animal reports - (918) 596-8000

Permitting Questions - (918) 596-9456

Trade Permits - (918) 596-9656

For the latest information on the City’s ransomware response, follow the City of Tulsa on Facebook, @CityofTulsa for latest updates.