Cybersecurity experts urges stronger ‘cyber hygiene’ after Cape Fear scams

Cyberattacks on Local Governments: A Growing Threat

Late last year, two municipalities in the Cape Fear region of North Carolina – Pender County and Carolina Beach – experienced cyberattacks resulting in significant financial losses. These incidents, totaling nearly $1.1 million, highlight a disturbing trend: local governments are increasingly becoming targets for cybercriminals.

Why Are Cities and Counties Targeted?

According to Ulku Clark, a cybersecurity and information systems professor at UNCW, municipalities are often seen as “low-hanging fruit.” Hackers frequently prioritize ease of access, and smaller governments often lack the robust cybersecurity infrastructure of larger entities. “Municipalities usually have low resources when it comes to cybersecurity,” Clark explained. This resource constraint extends to both budget and qualified personnel.

Pender County lost $650,000 after a sophisticated phishing scam impersonated the Lower Cape Fear Water and Sewer Authority, tricking employees into changing banking details via email. County Manager Colby Sawyer acknowledged the loss was preventable, emphasizing a failure to follow established protocols. Carolina Beach suffered two cyberattacks, resulting in a loss of $488,000, occurring while the town was in the process of updating its cybersecurity policies.

The Cost of Inadequate Cyber Hygiene

The financial impact of these attacks is substantial, but the costs extend beyond immediate monetary losses. Recovery efforts, system repairs, and potential legal ramifications add to the burden. Carolina Beach anticipates recovering some funds through insurance, but the remaining amount will come from the town’s general fund.

Clark stresses the importance of basic “cyber hygiene” as a first line of defense. This includes implementing strong passwords, providing regular employee training on identifying phishing attempts, and utilizing multi-factor authentication. Cyber insurance is also a critical safety net, offering financial protection in the event of a successful attack.

Future Trends and Increasing Vulnerabilities

Experts predict that cyberattacks on local governments will continue to rise. Several factors contribute to this trend. The increasing reliance on digital infrastructure – from online bill payment systems to smart city technologies – expands the attack surface. The proliferation of ransomware-as-a-service makes it easier for even novice criminals to launch sophisticated attacks.

The interconnectedness of municipal systems also presents a challenge. A breach in one department can potentially compromise the entire network. As local governments adopt more cloud-based services, they become increasingly dependent on the security practices of third-party providers.

Did you know? A recent report by the Government Technology magazine found that state and local governments spent $17.8 billion on cybersecurity in 2023, a 15% increase from the previous year, yet the threat landscape continues to outpace investment.

Proactive Measures for Local Governments

Beyond basic cyber hygiene, municipalities should consider implementing more comprehensive cybersecurity programs. This includes regular vulnerability assessments, penetration testing, and incident response planning. Investing in dedicated cybersecurity staff or partnering with managed security service providers can provide specialized expertise.

Collaboration and information sharing are also crucial. Local governments can benefit from sharing threat intelligence and best practices with neighboring municipalities and state-level cybersecurity agencies.

FAQ

Q: What is multi-factor authentication?
A: Multi-factor authentication requires users to provide two or more verification factors to access a system, such as a password and a code sent to their phone.

Q: What is a penetration test?
A: A penetration test is a simulated cyberattack designed to identify vulnerabilities in a system’s security.

Q: Is cyber insurance worth the cost?
A: Cyber insurance can provide financial coverage for recovery costs, legal fees, and other expenses associated with a cyberattack.

Q: What is “cyber hygiene”?
A: Cyber hygiene refers to the practice of maintaining a secure digital environment through basic security measures like strong passwords and regular software updates.

Q: What should I do if I suspect a phishing email?
A: Do not click on any links or open any attachments. Report the email to your IT department or security team.

To learn more about protecting your organization from cyber threats, explore resources from the Cybersecurity and Infrastructure Security Agency (CISA).

What steps is your local government taking to protect against cyberattacks? Share your thoughts in the comments below!