Government entities are often targets of cyberattacks, with 58% of local and state governments hit by some form of ransomware in 2021. Ransomware has become its own industry, where bad actors specialize in stealing passwords and then turn around and broker them for a profit.
The best defense for a city is to go back to the three fundamental components of security: people, processes, and technology. Here are a few suggestions to help prevent cybercrime within your city departments:
- Help city employees understand phishing and have a set process so they know how to alert others if something looks suspicious.
- Encourage and educate employees about strong passwords.
- Incorporate processes for additional layers of security like multi-factor authentication. This method uses a password and something else in combination to allow access. For example, a password and a code sent via text or phone call to validate the login.
- Evaluate your city’s technology for simplicity. The more complex the technology, the more difficult it is to keep secure.
- Look at your most critical systems or data and focus on protecting those assets first.
For more information about cybercrime and what your city can do, check out the educational session “The Hackers are Coming — Are You Prepared?” at the League of Minnesota Cities 2022 Annual Conference. Can't come to Duluth? Check out the cybersecurity resource page or check out the Cybersecurity for Clerks MemberLearn course — both available any time, any place.