Wednesday, January 8, 2025
Blog topics:
By Before becoming State Treasurer, I spent 25 years in IT and served in local government. I'm passionate about fighting the growing cybersecurity threats we face in government today. Cybersecurity demands our immediate attention.
In 2024, Indiana's local governments faced a surge of cyberattacks, highlighting the urgent need for robust cybersecurity. Three particular incidents targeted local agencies, exposing vulnerabilities and jeopardizing essential public services.
In the first attack, hackers launched ransomware on a city's government office, locking critical files and halting services for nearly a week. Attackers demanded a ransom to restore access to the data, forcing city leaders to endure high recovery costs and pressure to restore operations. Though authorities restored services, it was a sign of inadequate cybersecurity.
A second incident hit another Indiana municipality by breaching the personal data of thousands of residents. Hackers exposed sensitive information, putting many individuals at risk of identity theft. Local officials scrambled to contain the breach and notify those affected.
The third interruption targeted the public works department of a rural county. Hackers used a phishing scam to access critical utility data, briefly disrupting water and waste services. While quickly contained, the county still faced significant costs and delays.
These violations pose risks for Indiana's local governments, particularly those with limited budgets, as they work to protect sensitive data from sophisticated cyber threats. Fortunately, the State of Indiana offers resources to help, often at little or no cost.
Steps to Strengthen Cybersecurity
Some practical steps to enhance cybersecurity for local governments, even on a tight budget, are:
1. Conduct Regular Cybersecurity Risk Assessments
Identify the weak spots in your IT infrastructure, software, and hardware which will help you pinpoint vulnerable areas and prioritize improvements.
Resources:
2. Establish a Strong Cybersecurity Policy
Create clear guidelines for system usage, password management, and breach response. Ensuring all staff understand and follow these policies is crucial. Mock plans can facilitate the process.
Resources:
- NIST Risk Management Framework (RMF) Prepare Step FAQs
- Free Cybersecurity Services & Tools | CISA
- Cyber Essentials Toolkits | CISA
3. Develop an Incident Response Plan
Incident response policies ensure your team can communicate and act quickly.
Resources:
- Microsoft Word - Cybersecurity Incident Communications Policy (purdue.edu)
- Microsoft Word - Security Incident Response (purdue.edu)
- Incident Response Plan (IRP) Basics (cisa.gov)
4. Use Multi-Factor Authentication (MFA)
MFA enhances security by requiring a second form of verification, lowering unauthorized access risks.
Resources:
- Multi-factor Authentication (purdue.edu)
- More than a Password | CISA
- Multi-Factor Authentication Fact Sheet (cisa.gov)
5. Back Up Data and Monitoring
Regular data backups are critical in the event of a ransomware attack. Monitoring systems continuously can detect unusual activity and mitigate threats.
Resources:
Resources Available for Local Governments
Indiana’s local governments are not alone. The state offers valuable resources to help municipalities improve their cybersecurity posture. Multiple affordable options are available to make a significant difference.
For more information on reporting a cybersecurity incident or accessing state resources, visit Indiana's Cybersecurity Hub or use above resources.