Foster City Paralyzed by Cyberattack: What Municipal Governments Must Learn
The Foster City cyberattack shut down services for weeks. Learn how it likely happened and how to protect your municipality.
A City Brought to Its Knees On March 19, 2026, officials in Foster City, California detected "suspicious activity" on the city's computer network. Within hours, they were forced to take most government systems offline. Five days later, the city declared a state of emergency — and services were still down with no timeline for recovery. For the roughly 33,000 residents of this Bay Area municipality, the impact was immediate: permit applications, utility payments, public records requests, and most routine government services ground to a halt. Only police and 911 services remained operational. Foster City isn't an outlier. It's a warning. How Did This Likely Happen? While the city has not disclosed the exact attack vector, cybersecurity experts point to a familiar playbook. Jake Tarrant, an incident response manager at cybersecurity firm Logically, outlined the most probable scenarios for attacks like this. Scenario 1: A Phishing Email That One Employee Clicked The most likely entry point is a phishing email. A city employee — perhaps in finance, public works, or administration — receives an email that looks like it's from a trusted vendor, a colleague, or a government agency. It conta