Local Governments Targeted for Ransomware – How to Prevent?
In early 2023, Oakland, California, fell victim to a ransomware attack. Although city officials have not disclosed how the attack occurred, experts suspect a phishing email is the most likely cause. As a result, city officials brought down their servers to contain the attack.
Governments have been the target to many ransomware attacks and breaches. As most local governments maintain a small IT staff, there is potential for shared passwords, reused credentials, and a lack of multi-factor authentication security, exposing vulnerabilities for a breach.
Oakland is Breached
It was first noticed on a Wednesday evening in early February; when Oakland, California city officials quickly took most services’ backend servers offline and posted a message to the city website. Just a few days later, a local state of emergency was issued. In addition to several offices closing, many services remained offline for some time, including Oak311, Parking Citation Assistance Center, Business Tax Licenses, and Permitting.
The Play ransomware group claimed responsibility for breaching city services and posted about the hack on their group website. In their first release, they made available 10GB of data containing decades worth of files. In their second, larger breach, up to 600GB of data was compromised.
The impact of the security breach went beyond the disruption of city services, affecting both Oakland residents and city employees on a personal level. From July 2010 to January 2022, city employees were notified that their personal information may have been compromised. Additionally, certain Oakland residents, such as those filing a claim against the city or applying for federal programs through the city, may have also been affected.
As expected, this ongoing situation is a nightmare for both IT services and city administration, and it is also a public relations nightmare. Many concerned citizens continue to question how they are impacted and how to protect themselves against identity theft.
- Remote Access Trojan (RAT): Their Types, Mitigation & RemovalRemote Access Trojan (RAT): Their Types, Mitigation & Removal Post Source Material: Sucuri Remote Access… Read more: Remote Access Trojan (RAT): Their Types, Mitigation & Removal
- Chinese Hackers Exploited Barracuda’s ESG AppliancesChinese Hackers Exploited Barracuda’s ESG Appliances Barracuda has revealed that Chinese threat actors exploited a… Read more: Chinese Hackers Exploited Barracuda’s ESG Appliances
- China-Linked Budworm Targeting Middle Eastern Telco & Asian Government AgenciesChina-Linked Budworm Targeting Middle Eastern Telco & Asian Government Agencies In the ever-evolving landscape of… Read more: China-Linked Budworm Targeting Middle Eastern Telco & Asian Government Agencies
- Most Important Cyber Security Tips 2023Most Important Cyber Security Tips 2023 Important Cyber Security Security has become a necessity in… Read more: Most Important Cyber Security Tips 2023
- Every Business Owner 10 Essential Cybersecurity Facts Must KnowEvery Business Owner 10 Essential Cybersecurity Facts Must Know In today’s hyper-connected digital landscape, cybersecurity… Read more: Every Business Owner 10 Essential Cybersecurity Facts Must Know
The Ramifications of a Breach
Any system breach is serious. In this case, the data was encrypted, rendering services unusable. But, with a compromised infrastructure, threat actors could have leveraged that access to further infect city residents and employees. The Oakland breach may have been limited to lost data, but depending on the group responsible, the consequences could have been far worse.
The job of city IT services is already difficult due to typically smaller budgets and overworked IT staff. The myriad of security vulnerabilities to track in popular software and the difficulty of staying on top of ever-changing threats makes IT jobs even more challenging. Therefore, it is important to implement policies and procedures that can go a long way in securing and protecting your local government.
Keeping up with best practices and standards is difficult. Fortunately, there are tools available like, Secure Password generator tool that enforces stronger password policies, helps meet security compliance standards and to help keep your users safe from ransomware attacks from organizations.
Found this article interesting? then share with your friends and groups for awareness purpose.