The Snyderville Basin Water Reclamation District has reported that it successfully defended against an international cyber-attack, suspected to originate from China. Officials stated that their cybersecurity monitoring system alerted them to a breach involving their ArcGIS server, where files were being encrypted. The district's cybersecurity measures effectively isolated the attack, allowing them to recover all encrypted files without disrupting ongoing operations. In response to the incident, the district promptly informed the FBI and the Cybersecurity & Infrastructure Security Agency (CISA), which is part of the U.S. Department of Homeland Security. Alongside these federal agencies, the district is collaborating with software provider EPA Cyber Resources, Utah Cyber Security, and the Utah Division of Water Quality to enhance their defenses. CISA indicated that the attack is likely linked to the APT Flax Typhoon group, a Chinese state-sponsored organization known for conducting long-term cyberespionage campaigns targeting critical infrastructure in various regions, including the United States and Taiwan. District officials noted that the primary goal of the attackers might have been to encrypt the district's data and demand a ransom or to position themselves as hidden threats within the computer system. ArcGIS, developed by Esri, is widely utilized for geospatial mapping by both private entities and government organizations. The district relies on ArcGIS for a significant portion of its operations and therefore took the incident seriously. Following the attack, the district implemented several measures to bolster its cybersecurity. These included making updates to the ArcGIS software to address vulnerabilities, coordinating with federal authorities to conduct further cyber penetration testing, and enhancing monitoring protocols. The district's computer systems are now supervised by a cybersecurity center that operates 24/7 to ensure ongoing protection. For further inquiries, General Manager Michael Luers is available for contact.