Local Governments Targeted for Ransomware – How to Prevent?

In early 2023, Oakland, California, fell victim to a ransomware attack. Although city officials have not disclosed how the attack occurred, experts suspect a phishing email is the most likely cause. As a result, city officials brought down their servers to contain the attack.

Governments have been the target to many ransomware attacks and breaches. As most local governments maintain a small IT staff, there is potential for shared passwords, reused credentials, and a lack of multi-factor authentication security, exposing vulnerabilities for a breach.

Oakland is Breached
It was first noticed on a Wednesday evening in early February; when Oakland, California city officials quickly took most services’ backend servers offline and posted a message to the city website. Just a few days later, a local state of emergency was issued. In addition to several offices closing, many services remained offline for some time, including Oak311, Parking Citation Assistance Center, Business Tax Licenses, and Permitting.

The Play ransomware group claimed responsibility for breaching city services and posted about the hack on their group website. In their first release, they made available 10GB of data containing decades worth of files. In their second, larger breach, up to 600GB of data was compromised.

The impact of the security breach went beyond the disruption of city services, affecting both Oakland residents and city employees on a personal level. From July 2010 to January 2022, city employees were notified that their personal information may have been compromised. Additionally, certain Oakland residents, such as those filing a claim against the city or applying for federal programs through the city, may have also been affected.

As expected, this ongoing situation is a nightmare for both IT services and city administration, and it is also a public relations nightmare. Many concerned citizens continue to question how they are impacted and how to protect themselves against identity theft.

Related Articles:

Most Important Cyber Security Tips 2023September 25, 2023
Most Important Cyber Security Tips 2023 Important Cyber Security Security has become a necessity in … Read more
Every Business Owner 10 Essential Cybersecurity Facts Must KnowSeptember 21, 2023
Every Business Owner 10 Essential Cybersecurity Facts Must Know In today’s hyper-connected digital landscape, cybersecurity … Read more
New WinRAR Vulnerability Could Allow Hackers to Take Control of Your desktopAugust 25, 2023
New WinRAR Vulnerability Could Allow Hackers to Take Control of Your desktop A high-severity security … Read more
New Attack Campaign Targeting Zimbra Email Users for Credential TheftAugust 19, 2023
New Attack Campaign Targeting Zimbra Email Users for Credential Theft New “mass-spreading” social engineering campaign … Read more
India Passes New Digital Personal Data Protection Bill (DPDPB)August 16, 2023
India Passes New Digital Personal Data Protection Bill (DPDPB) The Indian President Droupadi Murmu on … Read more

The Ramifications of a Breach
Any system breach is serious. In this case, the data was encrypted, rendering services unusable. But, with a compromised infrastructure, threat actors could have leveraged that access to further infect city residents and employees. The Oakland breach may have been limited to lost data, but depending on the group responsible, the consequences could have been far worse.

The job of city IT services is already difficult due to typically smaller budgets and overworked IT staff. The myriad of security vulnerabilities to track in popular software and the difficulty of staying on top of ever-changing threats makes IT jobs even more challenging. Therefore, it is important to implement policies and procedures that can go a long way in securing and protecting your local government.

Keeping up with best practices and standards is difficult. Fortunately, there are tools available like, Secure Password generator tool that enforces stronger password policies, helps meet security compliance standards and to help keep your users safe from ransomware attacks from organizations.

Found this article interesting? then share with your friends and groups for awareness purpose.

Technogeek Online https://technogeek.online

Technogeek Online mission is to be a digital for technical decision-makers to gain knowledge about transformative technology. We deliver essential information on cyber technologies and strategies to guide you as you lead your organizations. We are inviting you to become a member of our community.

Subscribe

- Never miss a story with notifications

- Gain full access to our premium content

- Browse free from up to 5 devices at once

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Technogeekonline

Technogeekonline

Local Governments Targeted for Ransomware – How to Prevent?

Local Governments Targeted for Ransomware – How to Prevent?

LEAVE A REPLY Cancel reply

Company

Latest

Popular

Sitemap