https://www.americancityandcounty.com/wp-content/themes/acc_child/assets/images/logo/footer-logo.png
  • Home
  • Co-op Solutions
  • Hybrid Work
  • Commentaries
  • News
  • In-Depth
  • Multimedia
    • Back
    • Podcast
  • Resources & Events
    • Back
    • Resources
    • Webinars
    • White Papers
    • IWCE 2022
    • How to Contribute
    • Municipal Cost Index – Archive
    • Equipment Watch Page
    • American City & County Awards
  • About Us
    • Back
    • About Us
    • Contact Us
    • Advertise
    • Privacy Statement
    • Terms of Service
American City and County
  • NEWSLETTER
  • Home
  • Co-op Solutions
  • Hybrid Work
  • Commentaries
  • News
  • In-Depth
  • Multimedia
    • Back
    • Podcasts
  • Resources/Events
    • Back
    • Webinars
    • White Papers/eBooks
    • IWCE 2022
    • How to Contribute
    • American City & County Awards
    • Municipal Cost Index
    • Equipment Watch Page
  • About Us
    • Back
    • About Us
    • Contact Us
    • Advertise
    • Cookie Policy
    • Privacy Stament
    • Terms of Service
  • newsletter
  • Administration
  • Economy & Finance
  • Procurement
  • Public Safety
  • Public Works & Utilities
  • Smart Cities & Technology
  • Magazine
acc.com

Commentaries


Photo by Joe Moreh on Stockvault

Commentary

Preventing cyber-attacks needs to be a priority for local governments

Preventing cyber-attacks needs to be a priority for local governments

  • Written by Regine Bonneau
  • 14th May 2021

Cyber-attacks are a growing threat to America as government entities find themselves vulnerable, even if they think they have systems in place to prevent such occurrences. According to a study from Privacy.org, about 60 percent of cases occur within minutes and about 47 percent of breaches are the result of malicious or criminal intent. Take the Colonial Pipeline attack as an example. Colonial is one of the country’s major pipeline providers, carrying more than 2 million barrels of gasoline and jet fuel from Texas up the East Coast and on to New York daily. The attack has generated a state of emergency in 17 states and counting, as well as fuel shortages in the Southeast. As we’ve learned in recent days, the breach was due to a ransomware attack, in which criminal groups hold data hostage until the victim pays a ransom. This breach has heightened the vulnerability of the nation’s energy infrastructure to cyber-attacks and sounded the alarm for all types of businesses, local and state governments to make cybersecurity a priority, not just a knee-jerk reaction to a single publicized attack.

Ransomware is a form of malware that once deployed encrypts files. It can be a targeted attack or spread across a network infrastructure, hence crippling a business operation, which can be life altering—as is the case here involving our fuel supply, or even life threatening. Such hacks are often initiated through a “phishing” email campaign that contains malicious attachments or through drive-by downloading. Drive-by downloading occurs when a user unknowingly visits an infected website, which initiates the download and installation of a malware unbeknown to the user.

Sadly, we are seeing this type of attack more frequently, often on a smaller scale, where it goes unreported by the media, but it is happening and more often. This type of breach exposes the fragile state of the supervisory control and data acquisition (SCADA) network and the industrial control system (ICS), which in my opinion have been overlooked for too long, not prioritized and as a result, diminished in importance when the exact opposite should be happening. As the Colonial investigation unfolds, we will come to realize that the attackers were present in the network for a long time prior to initiating this massive attack. It likely began over a couple of days where different controls were being tested, undetected by the network. While there may have been some security solutions monitoring the network it obviously was not enough and may also be inferior in terms of its technology.

An attack of this magnitude initiated by ransomware is usually caused by a staff member’s credentials being compromised through a phishing email, the lack of education and awareness training for staff, and the diminished importance of cybersecurity at all levels from the board, to management to operations and onto the technical team. An isolated SCADA and ICS network is at risk because the threat is from an insider, a trusted employee.

Based on my previous experience and what my team has learned working with a variety of energy and utility companies, we can report that the country is ill prepared to defend against these types of attacks due to a lack of resources in both funding and skill set. There’s no denying that cybersecurity must be a priority for local and state government, as well as all types of businesses. It is important to understand and take responsibility for the guidance and implementation of their cybersecurity needs and how it works.

A recent case study from one client underscores the importance of SCADA and ICS controls. Recently my firm was involved in a cyber risk and resilience assessment and found that the USB drives were being shared from the isolated SCADA network and the corporate network. This alone will introduce malware or potential viruses to the isolated SCADA network, hence launching a breach caused by an insider threat (a trusted employee). This practice has since ended and ports are now closed, preventing the usage of unknown devices. Additionally, passwords were too similar across networks and were not strong enough. A software maintenance package was not renewed after the warranty expired due to cost, leaving patching of software for any vulnerabilities undone. This creates more stress on employees.

To prevent these types of breaches from occurring, we suggest five primary recommendations or “tips” that government organizations can implement to protect against this type of threat:

  1. Consult with a cybersecurity expert or company that specializes in these services.
  2. Next, conduct a full cyber risk and security assessment across the organization and the industrial network.
  3. Consistent, continuous and relevant education and awareness training for employees, staff, vendors and customers is critical.
  4. It is also important to conduct a quarterly Pen Testing to properly assess internal and external networks.
  5. Finally, conducting a business impact analysis is key to really understanding the pre-and-post effects. Cybersecurity must be a top priority.

 

Regine Bonneau, CTPRP, is the CEO/founder of RB Advisory LLC, a leader in security compliance and cyber risk management solutions for public and private businesses. Bonneau is a highly sought-after speaker within the cyber industry and recognized leader in several technology industry associations for her extensive knowledge and more than 20 years of experience in the field of cybersecurity, risk management and compliance in a variety of industries such as health care, financial, legal, government and energy sectors from small to large enterprises.

Tags: homepage-featured-2 homepage-featured-4 Administration Public Safety Commentaries Commentaries Public Safety Commentary

Most Recent


  • Preventing cyber-attacks needs to be a priority for local governments
    Take American City & County's budgeting survey
    With the recently passed infrastructure-related legislation by the federal government, local administrators across the United States are poised to make historic investments into their communities.  Given the generational precedence of this action, we’re curious about the state of local budgets—what expense lines are increasing the fastest year-over-year? In what area has federal funding been the […]
  • Atlanta, Ga.
    Six cities and counties will take stock of underutilized assets in Rethinking Revenue incubator
    The Government Finance Officers Association in collaboration with various organizations including Urban3 and the Sorenson Impact Center has been spearheading a forward-looking approach to public financing, the Rethinking Revenue Project, an investigation of the foundational structure of government revenue and underutilized assets, for about a year now. A new initiative launched by the collaboration is […]
  • public sector
    Generational differences present an opportunity to reinvent public sector service delivery
    As major technology companies have transformed the ideal customer experience into instantaneous “one-click” services, the public sector has been challenged to keep pace. As a result, government organizations must meet the changing expectations of Americans with faster, simpler, 24/7 services. Government is ingrained in the fabric of our lives, including the water we drink, the […]
  • Report: Local and state governments are facing a retention crisis; the worst could be yet to come
    When the pandemic struck in 2020, public retention was hit hard: jobs in local government plummeted by 8.5 percent; state employment dropped by 4.4 percent. Two years later, local and state government jobs have rebounded by about half—to 4.1 and 1.9 percent below pre-pandemic levels respectively, according to a new report from Mission Square Research […]

Leave a comment Cancel reply

-or-

Log in with your American City and County account

Alternatively, post a comment by completing the form below:

Your email address will not be published. Required fields are marked *

Related Content

  • How governments can keep employees safe as they return to work
  • Building community and officer wellness through data sharing
  • California city combines advanced technology with dedicated public safety team for comprehensive emergency management
  • 10 tactical modifications for healthier public facilities

Twitter


AmerCityCounty

Supreme Court ruling on EPA greenhouse gas regulation will impact cities dlvr.it/STBwkw

1st July 2022
AmerCityCounty

Sustainability initiatives take center stage in Florida county dlvr.it/STBvwN

1st July 2022
AmerCityCounty

10 best cities for July Fourth celebrations dlvr.it/STBfHt

1st July 2022
AmerCityCounty

The Missing Link in Cloud Security dlvr.it/STBXNL

1st July 2022
AmerCityCounty

Improving Productivity with Employee Engagement | Aug. 4, 2022 at 2 PM ET dlvr.it/STBCD5

1st July 2022
AmerCityCounty

We want to hear from you! Please take this brief survey and let us know how your organization is managing your budg… twitter.com/i/web/status/1…

30th June 2022
AmerCityCounty

Report: Reforming emergency dispatch won’t be easy, but it’s necessary dlvr.it/ST7kQ5

30th June 2022
AmerCityCounty

Three U.S. cities to adopt Bloomberg Philanthropies Mayors Challenge-winning project to combat climate change dlvr.it/ST4bjk

29th June 2022

Newsletters

Sign up for American City & County’s newsletters to receive regular news and information updates about local governments.

Resale Insights Dashboard

The Resale Insights Dashboard provides model-level data for the entire used equipment market to help you save time and money.

Municipal Cost Index

Updated monthly since 1978, our exclusive Municipal Cost Index shows the effects of inflation on the cost of providing municipal services

Media Kit and Advertising

Want to reach our digital audience? Learn more here.

DISCOVER MORE FROM INFORMA TECH

  • IWCE’s Urgent Communications
  • IWCE Expo

WORKING WITH US

  • About Us
  • Contact Us

FOLLOW American City and County ON SOCIAL

  • Privacy
  • CCPA: “Do Not Sell My Data”
  • Cookies Policy
  • Terms
Copyright © 2022 Informa PLC. Informa PLC is registered in England and Wales with company number 8860726 whose registered and Head office is 5 Howick Place, London, SW1P 1WG.
This website uses cookies, including third party ones, to allow for analysis of how people use our website in order to improve your experience and our services. By continuing to use our website, you agree to the use of such cookies. Click here for more information on our Cookie Policy and Privacy Policy.
X