U.S. 2020 Election-Themed Ransomware Attacks Are on Their Way – And Local Govt's Aren’t Prepared



ransomware-screen-skull-1New research shows local governments practice a distinct lack of cybersecurity preparedness. And with local, state, and national elections coming up this year, cyberattacks are a concern.

In a recent post, anti-malware vendor Emisoft sounded the call for both private and public sector businesses to be on the lookout for cyberattacks leveraging themes related to upcoming elections - from campaign fundraising to promoting stories about candidates, the possibilities are endless. And, given the heightened political tensions that exist in the U.S., potential victims are already emotionally charged enough to respond to phishing and web-based attacks.

According to a 2019 University of Maryland, Baltimore County (UMBC) report, state and local government are grossly underprepared:

  • Slightly over one-third of government organizations have no idea how often security incidents occur
  • Over two-thirds are unaware of the frequency of actual data breaches
  • Less than half keep track of attacks

In essence, government operations, by definition, aren’t security-minded.

Put these two issues together and you have the makings of attacks that can damage, alter, or cripple elections at a state and local scale. Even ransomware attacks today are expanding operations to attack beyond simply encrypting data and holding it for ransom. Attacks now include stealing data and using extortion to improve the chances of a paid ransom, as well as hacking victim networks, which can give entrée to other kinds of attacks.

Both public and private sector organizations need to move forward with operations that include a security mindset. Layered security, data protection, Security Awareness Training, and endpoint protection are all necessary parts of proven security execution. But, in the case of state and local governments, it’s going to need to start at the top with a tough stance on cybersecurity in order to see necessary changes made throughout the organization.


RanSim

Free downloadable software tool

Threat actors are constantly coming out with new strains to evade detection. Is your network effective in blocking all of them when employees fall for social engineering attacks?

RanSim gives you a quick look at the effectiveness of your existing network protection. RanSim will test 24 ransomware infection scenarios and 1 cryptomining infection scenario and show you if a workstation is vulnerable.

RansIm-Monitor3Here's how it works:

  • 100% harmless simulation of real ransomware and cryptomining infections
  • Does not use any of your own files
  • Tests 25 types of infection scenarios
  • Just download the installer and run it
  • Results in a few minutes!

Get RanSim!

PS: Don't like to click on redirected buttons? Cut & Paste this link in your browser:

https://www.knowbe4.com/ransim

Topics: Ransomware



Subscribe to Our Blog


Comprehensive Anti-Phishing Guide




Get the latest about social engineering

Subscribe to CyberheistNews