https://www.americancityandcounty.com/wp-content/themes/acc_child/assets/images/logo/footer-logo.png
  • Home
  • Co-op Solutions
  • Commentaries
  • News
  • In-Depth
  • Multimedia
    • Back
    • Podcast
  • Resources
    • Back
    • Resources
    • Webinars
    • White Papers
    • Events
    • How to Contribute
    • Municipal Cost Index – Archive
    • Equipment Watch Page
    • American City & County Awards
  • Magazine
    • Back
    • Digital Editions
    • Reprints & Reuse
    • Advertise
  • About Us
    • Back
    • About Us
    • Contact Us
    • Privacy Statement
    • Terms of Service
American City and County
  • NEWSLETTER
  • Home
  • Co-op Solutions
  • Commentaries
  • News
  • In-Depth
  • Multimedia
    • Back
    • Podcasts
  • Resources
    • Back
    • Webinars
    • White Papers
    • Events
    • How to Contribute
    • American City & County Awards
    • Municipal Cost Index
    • Equipment Watch Page
  • Magazine
    • Back
    • Digital Editions
    • Reprints & Reuse
    • Subscribe to GovPro
    • Manage GovPro Subscription
    • Advertise
  • About Us
    • Back
    • About Us
    • Contact Us
    • Cookie Policy
    • Privacy Stament
    • Terms of Service
  • newsletter
  • Administration
  • Economy & Finance
  • Procurement
  • Public Safety
  • Public Works & Utilities
  • Smart Cities & Technology
acc.com

Administration


Photo by Florian Olivo on Unsplash

Article

Preventing and responding to ransomware

Preventing and responding to ransomware

  • Written by Shridar Subramanian
  • 25th March 2020

Ransomware attacks on public institutions are on the rise. In fact, in 2019, many state and local governments, as well as hospitals, were the targets of cybercrime. The result can be a lack of productivity, financial issues and other operational deficiencies and crises for these organizations.  

The fact that these dangerous cyberattacks, and their consequences have been made increasingly public has increased the sensitivity of data security – not only among the population, but especially at the targeted government institutions. A 2019 cybersecurity study found that even if disclosure of such attacks is required by law, some institutions have not reported violations. This suggests that the actual number of attacks is higher than previously thought.

It is high time to act. But many are struggling to implement effective protection measures in order to defend themselves. The reason: they have too little information about the faster and more persistent attack scenarios of hackers.

As is so often the case, the best form of protection is prevention. This means taking appropriate protective measures to stop a cyberattack before it even has a chance to infect computers. For example, government organizations that handle sensitive information should have powerful spam and high-quality firewalls to protect against malicious IP addresses. More security can also be ensured by using up-to-date operating systems and introducing standard processes for attaching operating system patches and updates, as well as recognized anti-virus programs. But beware, it is not enough to simply install and implement these protection measures. Instead, the measures must be continuously tested and optimized to ensure that the data remains protected.

Prepare employees to defend against cybercrime

Phishing attacks that attempt to steal personal data from an email recipient, in particular, remain a concern. Los Angeles County was the target of a phishing attack in late 2019. These cyberattacks are unfortunately on the rise, as employee emails become more vulnerable to hackers. Opening an email attachment of a supposedly harmless email can cause a virus to become active and spread throughout the entire system triggering an attack.

To stop these types of attacks from occurring, education must be central to any prevention strategy. Employees should be made aware of how to protect their computers from a possible attack and how to identify a potentially dangerous email. Hackers constantly re-adjust their attack methods to overcome the latest security technology, so employees must be continuously informed and trained.

Introduce security solutions

The market has a wide variety of security solutions. They cover a wide range of areas, such as intercepting viruses, providing secure passwords, or controlling routes in and out of the cloud. Which of the solutions is appropriate for whom depends on the individual requirements. However, a holistic security strategy should be established before the introduction, on the basis of which the appropriate solutions are then acquired. Care should be taken to ensure that there is no patchwork, but an all-encompassing system that leaves no gaps open because that is what hackers thrive on.

Reduce damage and downtime

Even the best thought out plans sometimes fail. Therefore, if all preventive measures and safety systems fail, ensure that the existing data is as secure as possible and can be reliably restored. This is the only way to ensure that, in the event of a successful cyberattack, minimal damage and downtime occur – a particularly important aspect, as infrastructures or public institutions offer elementary services and have sensitive, personal data that is highly protected.

The backup plan

In the event of an attack, organizations should have a disaster recovery plan that includes certified and recognized backup and disaster recovery software.  Local backup images may be sufficient to protect the data. However, since ransomware is able to encrypt backups, it is recommended to go a step further and replicate the backup images to a cloud system. This ensures that the files are still secure and easy to recover.

Don’t pay under any circumstances

If a public institution is the target of a ransomware attack, it is important to keep calm and don’t pay. The payment of ransom encourages hackers to continue to launch attacks and signals to them how vulnerable an organization is, which can increase the likelihood of further attacks.    

Public administrations, authorities and institutions must be aware of cybercrime. They should do their utmost to protect their systems and data and, in the event of a successful attack, ensure that the public is informed in a targeted and coordinated manner. It is essential to prevent hackers from using such attacks to unsettle the public and to shake confidence in existing social systems and structures.

Shridar Subramanian is the vice president of Global Product Management at StorageCraft.

Tags: cyber attack Cybersecurity Local Government ransomware Administration News Administration News Article

Related


  • A man working from home
    The pandemic and the future of remote work for local government
    Local governments and municipalities across the U.S. are facing an unprecedented need to shift employees to remote work due to the spread of COVID-19. Be it voluntary or mandated, many government organizations are seeing a high volume of internal and public-facing requests, which leave organizations left scrambling to determine what is next when it comes […]
  • Stack of books and files on table
    FEMA aid for local governments’ COVID-19 response: Learn and follow the ‘rules of the road’ for reimbursement
    For communities across America grappling with the challenge of managing COVID-19, one rare piece of encouraging news is that they’ll be able to get at least 75 percent reimbursement for eligible emergency protective measures and pandemic response costs by the Federal Emergency Management Agency (FEMA) under FEMA’s Public Assistance (PA) program. What’s critical for municipalities, […]
  • The thinking machine
    Artificial intelligence is a bit of a buzz term these days – but what do people really mean when they say AI? And why should local governments care? First of all, AI is extremely misunderstood. We aren’t talking about HAL from “2001: A Space Odyssey,” necessarily; we’re talking about what Alan Turing speculated about “thinking […]
  • Edge computing, 5G and AI — the perfect storm for government systems
    On today’s government networks, the real action is at the edge. This includes establishing edge-based processing power, with onboard analytics, via systems that often are augmented by artificial intelligence (AI). In many cases, these systems are housed in modular containers that serve as their own datacenters. Some are about the size of a typical minivan, […]

Leave a comment Cancel reply

-or-

Log in with your American City and County account

Alternatively, post a comment by completing the form below:

Your email address will not be published. Required fields are marked *

Related Content

  • Shelter-in-place orders keep people inside, close non-essential businesses

White papers


How-to Tips to Prepare for Your Summer Construction Projects

5th April 2021

How to Procure an eProcurement System that Generates More Value from Your Budget

1st April 2021

The Technology Solutions Vital to Clerk Productivity in Our Post-Pandemic Communities

18th March 2021
view all

Events


PODCAST


Young Leaders Episode 4 – Cyril Jefferson – City Councilman, High Point, North Carolina

13th October 2020

Young Leaders Episode 3 – Shannon Hardin – City Council President, Columbus, Ohio

27th July 2020

Young Leaders Episode 2 – Christian Williams – Development Services Planner, Goodyear, Ariz.

1st July 2020
view all

Twitter


AmerCityCounty

Georgia city moves to automated trash collection dlvr.it/RxX5Rl

12th April 2021
AmerCityCounty

The Community Game Changer: Library Outsourcing dlvr.it/RxLd6r

9th April 2021
AmerCityCounty

Cooperative contracts can be an entryway for small and diverse companies to successfully compete for government sal… twitter.com/i/web/status/1…

9th April 2021
AmerCityCounty

Electric slide: Mayors form collaborative organization to purchase electric vehicles for cities dlvr.it/RxGsHY

8th April 2021
AmerCityCounty

Celebrating the unsung heroes of the COVID-19 pandemic: Procurement professionals dlvr.it/RxGsG2

8th April 2021
AmerCityCounty

Expanding opportunities: Nebraska’s bold procurement Concierge Program dlvr.it/RxGpyr

8th April 2021
AmerCityCounty

All activities monitored: The 10 most surveilled major cities in the U.S. dlvr.it/RxCKzy

7th April 2021
AmerCityCounty

Denver anticipates autonomous vehicles with cross-agency, cross-sector collaborative planning dlvr.it/RxC1dP

7th April 2021

Newsletters

Sign up for American City & County’s newsletters to receive regular news and information updates about local governments.

Resale Insights Dashboard

The Resale Insights Dashboard provides model-level data for the entire used equipment market to help you save time and money.

Municipal Cost Index

Updated monthly since 1978, our exclusive Municipal Cost Index shows the effects of inflation on the cost of providing municipal services

Media Kit and Advertising

Want to reach our digital audience? Learn more here.

DISCOVER MORE FROM INFORMA TECH

  • IWCE’s Urgent Communications
  • IWCE Expo

WORKING WITH US

  • About Us
  • Contact Us

FOLLOW American City and County ON SOCIAL

  • Privacy
  • CCPA: “Do Not Sell My Data”
  • Cookies Policy
  • Terms
Copyright © 2021 Informa PLC. Informa PLC is registered in England and Wales with company number 8860726 whose registered and Head office is 5 Howick Place, London, SW1P 1WG.
This website uses cookies, including third party ones, to allow for analysis of how people use our website in order to improve your experience and our services. By continuing to use our website, you agree to the use of such cookies. Click here for more information on our Cookie Policy and Privacy Policy.
X