{
"$type": "site.standard.document",
"bskyPostRef": {
"cid": "bafyreibalrhrozuw7ww7vuvdzpwgdj72oflt7ro5d73codb33wlrfgbs2a",
"uri": "at://did:plc:3mf3ql5qtnfwownblde4355r/app.bsky.feed.post/3mmepyrjywb22"
},
"coverImage": {
"$type": "blob",
"ref": {
"$link": "bafkreiewxx2zgrzt3by5z27m7ismfuvhg57zb3lfnz2zeaghrl6patr36m"
},
"mimeType": "image/webp",
"size": 40746
},
"description": "The CNMI Office of Information Technology said some government email users lost access as it works to restore full functionality.",
"path": "/cnmi-email-cyberattack/",
"publishedAt": "2026-05-21T15:23:08.000Z",
"site": "https://dysruptionhub.com",
"tags": [
"Marianas Press",
"Government of Guam websites"
],
"textContent": "A cyberattack has affected some Northern Mariana Islands government email accounts, leaving some users without access, officials said Thursday.\n\nThe outage could slow routine government work for affected employees. The Commonwealth of the Northern Mariana Islands is a U.S. territory in the western Pacific.\n\nThe Office of Information Technology said the attack affected certain government email accounts and that it had begun “systemwide security protocols and corrective actions” to restore full functionality.\n\nThe notice was published May 21 by Marianas Press as a Department of Finance press release. The office described the incident as a “cyber-attack,” but did not identify an attack type, threat actor or initial access method.\n\nOfficials directed affected government users to OIT support while mitigation work continues. OIT also reminded users not to click suspicious links, open unknown attachments or respond to unexpected password or personal information requests.\n\nThe Department of Finance website lists OIT among its divisions. The department says its mission includes managing public funds, enforcing tax and customs laws, and maintaining accountability for government assets.\n\n****Chip in once****\nIf this reporting helped you, a one-time tip helps cover hosting, tools and future investigations.\n\nTip us\n\n****Support us monthly****\nA small monthly pledge keeps independent coverage and our reader tools online for everyone.\n\nBecome a Supporter\n\nThe government has not publicly confirmed ransomware, data theft or a ransom demand. Officials also have not said whether any public-facing services beyond email were disrupted. DysruptionHub could not independently confirm any ransomware claim tied to the incident from the reviewed sources. Officials did not immediately respond to an emailed request for comment.\n\nThe email incident followed a May 2 cyber incident that disrupted multiple Government of Guam websites, where officials said emergency response operations were not affected and services continued through alternate channels. Both incidents came weeks after Super Typhoon Sinlaku threatened the Mariana Islands, prompting emergency preparations in Guam and the Northern Mariana Islands.\n\nOIT said it would continue providing updates as restoration progresses. Officials have not said how many accounts were affected, whether any email content was accessed or when full access will return.\n\n****Attribution note:**** DysruptionHub credits upstream reporting and primary sources—see citations above. If this report informed your coverage, please cite DysruptionHub with a link.",
"title": "Northern Mariana Islands government email accounts hit by cyberattack",
"updatedAt": "2026-05-21T15:23:09.361Z"
}