As part of our effort to inform our clients about potential and serious cybersecurity issues, MCP provides advisories about vulnerabilities and exploits that could threaten the operations of their mission-critical communications networks and systems. Sign up to receive these advisories in your inbox as soon as they are released.
Topics: Cybersecurity
As part of our ongoing effort to keep our clients informed about the latest cybersecurity threats, we issue advisories whenever new threats are detected. If you would like to receive such advisories in the future, update your preferences here.
MCP’s NetInform solution leverages a variety of tools that enable our subject-matter experts to assess our clients’ communications network security postures. That assessment includes looking for vulnerabilities that could allow a bad actor to gain access to the network and then navigate through it, seeking opportunities to perform cyberattacks. Typically, a lot of vulnerabilities exist, and they’re not always easy to see. It can be something as simple as a network port being left open by a service technician after the work is done, or a former employee’s account is still active long after they left. This is problematic because numerous, easy-to-use scanning programs are readily available to hackers that enable them to probe an organization’s network to discover every open port, i.e., breach point, and attempt access.
As part of our effort to inform our clients about potential and serious cybersecurity issues, MCP provides advisories about vulnerabilities and exploits that could threaten the operations of their mission-critical communications networks. Sign up to receive these advisories in your inbox as soon as they are released.
This week, there is a new critical alert that requires the mission-critical community’s immediate attention.
Advisory Summary
Hacking groups still are exploiting the COVID-19 pandemic as an opportunity to perform cyberattacks. The United States’ Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA) and the United Kingdom’s National Cyber Security Centre (NCSC) issued a joint alert regarding the threats. To combat these threats, their recommendations are focused on user training and good cyber hygiene. A comprehensive list of recommendations to mitigate the risk can be found on the CISA website.
This week, there is a new critical alert that requires the public safety community’s immediate attention.
In this recent post on cybersecurity training, we explained why it is one of the most crucial tactics government agencies for cyberrisk prevention—specifically, we highlighted how phishing messages can infect and ultimately bring down an entire mission-critical communications network. With email being such a widely used form of communication, malicious-threat perpetrators are increasing in quantity and sophistication by the minute, looking to take advantage of email’s prevalence in order to exploit it. Statista reports that more than 55 percent of emails sent are considered spam, and many of them contain phishing exploits.
According to a recent report by Crowdstrike, cybersecurity threats to state and local governments increased in sophistication in 2019. While there have been improvements in how government agencies detect attacks, assailants continue to be relentless and inventive in their efforts to find IT infrastructure gaps that can be exploited. In a highly complex digital environment full of cybercriminals looking to exploit your organization’s vulnerability, a self-inflected wound can be especially frustrating.
Today, more public safety agencies are taking a serious look at how they can mitigate the risk of cyberattacks due to the dramatic spike in ransomware attacks on state and local governments. Such attacks often result in hefty ransom demands, with reports of demands as high as $400,000. One of the most well-known ransomware attacks of 2019 impacted 22 municipalities in Texas, with hackers requesting more than two million dollars in ransom payment to unlock the data.
The emergency communications industry is a growing target for cyber security attacks and the threat is only just beginning. Public safety communications infrastructure is becoming more IP-based, and as a result, it's vulnerability to cyber threats is on the rise. There are more than 6,000 PSAPs located across the country, and 80 percent of them are small, making them unlikely to have inadequate cyber security defense programs. This is just one factor, among many, that makes 911 systems an attractive target for cyber-attacks.
Several major cyber security incidents have plagued the industry in the recent months, including
These are just two examples that demonstrate that cyber threats are growing in complexity and sophistication, and could continue to increase in severity as PSAPs become more interconnected, both regionally and at the statewide level.
Understanding the types of cyber threats that exist today, PSAP and IT Managers can better protect the data and assets within their 911 centers that could be targets.
How can we support your mission? From design and procurement to building and management, our national team of experts is here to help…because the mission matters.
A: 690 Grays Woods Blvd., Port Matilda, PA 16870
P: 888.862.7911
