Learning from Columbus: Cybersecurity Best Practices for Public Services

On July 18, 2024, Columbus, Ohio, faced a major cybersecurity breach caused by a foreign threat actor. The attackers attempted to spread ransomware through an internet download, leading to disruptions in city services like email, 311 services, and the dispatch system for first responders. The City’s Department of Technology quickly identified the issue and acted to minimize damage by cutting off internet access.

Impact on Canadian Users

Even though this incident primarily affects Columbus, Ohio, it’s a crucial reminder for Canadian organizations and individuals about the importance of cybersecurity. Similar attacks could target Canadian cities, disrupting essential services and exposing personal information. This incident emphasizes the need for strong cybersecurity measures and awareness to defend against such threats.

Mitigation Efforts

Columbus has involved law enforcement and cybersecurity experts to manage the situation. The Department of Technology acted quickly to limit exposure by disconnecting internet access and is working hard to restore affected systems. They are also identifying and notifying individuals whose personal information may have been compromised. Restoring critical services like 911 and 311 is a top priority.

Best Practices for Prevention

To prevent similar incidents in the future, organizations should:

• Regular Security Assessments: Conduct frequent security assessments and vulnerability scans to spot and fix potential issues.
• Employee Training: Continuously train employees on cybersecurity to help them recognize and avoid phishing and other malicious activities.
• Network Segmentation: Use network segmentation to limit malware spread and isolate critical systems.
• Incident Response Plan: Develop and regularly update an incident response plan to ensure a quick and effective response to cybersecurity incidents.
• Multi-Factor Authentication (MFA): Implement MFA to add an extra layer of security to sensitive systems and data.

Conclusion

The cyber incident in Columbus, Ohio highlights the crucial need for robust cybersecurity measures and preparedness. By learning from this incident and applying best practices, organizations can better protect themselves against similar threats and ensure the continuity of essential services. As cyber threats continue to evolve, staying vigilant and proactive is essential to safeguarding our digital infrastructure.

Additional Resources

• Columbus continues investigating cyber security ‘incident’
• A week into cyber woes, Columbus mayor says city aims to get fully operational ASAP
• Ransomware attack cause of city tech issues, Columbus mayor says
• Nearly a week after cyber ‘abnormality’ Columbus city services limited
• Columbus discovers ‘abnormality’ in systems believed to be caused by malicious link

Keep your mission-critical communication lines open and secure with InterTalk!

Contact InterTalk today to book a needs assessment to discuss your communication needs with our expert team.

Products

InterTalk Enlite™

Next Generation Dispatch

Encrypted, secure & reliable, flexible dispatch solution with on-demand scalability providing operational continuity and mobility. Cloud or on-premises infrastructure.