CLOSE
Tags Posts tagged with "ransomware"

ransomware

by -
0 313
The PJSTCA executive board during its December monthly meeting. Photo by Raymond Janis

The Port Jefferson Station/Terryville Civic Association met Tuesday, Dec. 13, at Comsewogue Public Library for its monthly meeting.

PJSTCA vice president Sal Pitti delivered the report on public safety. Given a noticeable uptick in phone scams and malicious email attachments, Pitti stressed the importance of staying on high alert for these threats.

“The bottom line is that if you don’t know the other person on the other end of the phone, don’t send them money,” he said. “If you get an email from somebody you don’t know — and I don’t care how official the email looks — don’t click the link. That’s their way into your computer system.”

Noting the ongoing fallout of the September ransomware attack against the Suffolk County government, he added, “It can happen to anybody.”

The civic’s corresponding secretary Charlie McAteer announced the renaming of the Setauket-Port Jefferson Station Greenway trail in honor of outgoing New York State Assemblyman Steve Englebright (D-Setauket).

“Steve Englebright was the person who initially, in 2001, got the $2 million-plus for the initial project, which opened in 2009,” he said. “I think that given all of the things he has done in the community, that is a nice plus.”

Student representative Max of Comsewogue School District reported that the high school would host its Holiday Spirit Week with various themes next week.

CPL assistant library director Andrea Malchiodi reminded the members that donations are being accepted for Toys for Tots. “December 17 is the last day for that,” she said. “Food is always welcome for our food pantry. The Tree of Warmth will be collecting hats, gloves, mittens and scarves until January 31.”

During last month’s meeting, members vigorously discussed the planned retirement community to be developed at the intersection of Terryville and Old Town roads. [See story, “PJS/Terryville civic hosts November meeting.”]

McAteer reported on a recent meeting between civic leaders, members of the Port Jefferson Station/Terryville Chamber of Commerce, representatives from Town of Brookhaven Councilmember Jonathan Kornreich’s (D-Stony Brook) office and the developer of the site.

The developer is “talking about putting in a very small, just over 2,100-square-foot clubhouse, an outdoor swimming pool, a pickleball court and two bocce ball courts,” McAteer said. “The [residential units] will all be two stories high.”

Summarizing his thoughts on the exchanges, he added that the developer’s team “seemed to be amenable to our small, minor suggestions. I thought it went well.”

Multiple civic members expressed their interest in contributing to the proposed community garden on the John F. Kennedy middle school property. Pitti said he hopes to begin planning for the garden in March after fleshing out some details of insuring the facility.

Near the end of the meeting, member Paul Sagliocca inquired whether the civic association could collectively apply greater pressure on the Town of Brookhaven Highway Department to repave Terryville Road.

“I want to see if we come up with a subset of this meeting and prioritize the road because we’re missing out,” he said.

Responding to Sagliocca’s request, Pitti suggested the highway prioritization process within the town is steeped in politics and bureaucracy. While Terryville Road has been on the department’s list for roughly a half-decade, Pitti added that it will be up to the department when the roadway gets repaved. 

The town’s Highway Superintendent Dan Losquadro (R) could not be reached for comment by press time.

by -
0 575
At podium, Legislator Anthony Piccirillo (R-Holtsville), chair of the newly-formed Cyberattack Investigation Committee. Photo by Raymond Janis

County legislators convened at the William H. Rogers Legislature Building in Hauppauge on Monday, Dec. 5, announcing the formation of a bipartisan special committee to investigate the recent cyberattack against the county government.

A confirmed ransomware event was first reported in early September. [See story, “Suffolk County cyberattack offers a window into the dangers of the digital age,” Nov. 17, TBR News Media website.] The attack crippled the county’s IT infrastructure, shutting down the system for over a month, with systems slowly coming back online.

The county press release relating to the new committee indicated that, “Information regarding the effects of the attack continues to be made public, including the admission that the personal information of as many as 470,000 residents and 26,000 past and current employees has been stolen by the hackers.” 

Kevin McCaffrey (R-Lindenhurst), presiding officer of the county Legislature, announced the appointment of Legislator Anthony Piccirillo (R-Holtsville) as chair of the newly formed special committee. With these two legislators, the rest of the committee will comprise Minority Leader Jason Richberg (D-West Babylon), and Legislators Sarah Anker (D-Mount Sinai), Jim Mazzarella (R-Moriches) and Rob Trotta (R-Fort Salonga).

“The purpose of this committee is to do one thing and one thing only, and that is to find out what happened and how we can prevent that from happening again,” McCaffrey said.

The presiding officer described the impact felt by county officials and residents alike due to the cyber event. He stated that sensitive information of county employees was likely accessed, with many details still unknown.

“There’s been an impact on each and every one of our residents,” he said, adding, “Employees, including myself, have now found out that our Social Security numbers have been compromised. We need to make sure that this doesn’t happen again.”

‘The best disinfectant is sunlight, so we’re going to open the windows and let the sun in.’

— Anthony Piccirillo

Piccirillo outlined his priorities and intended goals as chair. He regarded the Legislature as a coequal branch of the county government with a constitutional obligation to conduct oversight activities. 

“We’re going to execute our constitutional duty of oversight,” he said. “We passed a procedural motion that we now have subpoena power to call witnesses under oath and bring them in if they refuse to come in.”

The committee chairman added, “I do expect full cooperation from anyone that we ask to come in, but we do have that tool in our toolbox, where if people start to refuse to speak to the Legislature then we can have them here under subpoena.”

Piccirillo maintained that openness and transparency would be necessary to restore government operations and public trust.

“The best disinfectant is sunlight, so we’re going to open the windows and let the sun in here to shine and make sure that we get the truth,” he said. “We’re going to follow the facts and conduct the thorough investigation that the residents of Suffolk County deserve.”

Richberg detailed the collective shock and disbelief experienced by county officials when reports first circulated of the cybersecurity breach. He said a proper diagnosis of the problems leading up to the attack would help thwart a similar scenario from unfolding.

“I think understanding and diagnosing the problem from the beginning and having a bipartisan approach to asking the questions in the sunlight … is really important,” the minority leader said. “Most importantly, we need full structures for us to move forward, so this doesn’t happen again and that we are appropriately protected from anything that could happen to us in the future.”

Above, Suffolk County Legislator Sarah Anker (D-Mount Sinai). Photo by Raymond Janis

In an interview, Anker discussed the gravity of the moment and the importance of the government coordinating its response correctly. “I know we’re spending up to $12 million to address this, if not more,” she said. “We need to get all the experts in the field to address what we’re dealing with and how to best deal with it.”

Anker also addressed the criminal nature of this cyber intrusion and the need to grasp cybercrime trends and criminal culture online.

“The dark web, that’s where all of this stuff is happening,” the county legislator said. “It’s the Wild, Wild West of our times, and if we don’t address that in a more aggressive way, it’s going to ripple throughout our country.”

While the committee’s work is just getting underway, McCaffrey said the process will culminate in a report detailing its findings. “We expect to be able to roll this out and tell a good story about what happened from beginning to end,” he said.

by -
0 819
Pixabay photo

The recent ransomware attack against the Suffolk County government has sparked questions regarding our relationship with technology. 

We often take for granted the convenience offered by our devices. Today, we can communicate at lightning speed thanks to email and text messaging. A week’s supply of groceries is just a few clicks away. And many can carry out a full day of work without leaving their homes. 

The digital revolution has permeated nearly every facet of our lives, finding the quickest, simplest, most convenient solutions to almost all of our daily problems. But are there consequences to our increasingly digital way of life? If the Suffolk County cyberattack has taught us anything, the answer is an emphatic “yes.”

While our county officials work through the ransomware situation, we must take a closer look at our technologies at home. What kind of sensitive records are stored within our smartphones and personal computers? How much could someone with access to these devices learn about us?

While most give very little thought to these matters, we must take a greater interest in our personal cybersecurity. If hackers can infiltrate the county’s network, crippling the government’s entire system for over a month, they can invade your home computer, too.

The digitization of all records is not the answer to our problems. Our social security cards and birth certificates are safer in the filing cabinet than on our computers. If we refrain from uploading these sensitive records to our devices, we deny hackers the chance to use them against us.

To protect oneself against ransomware, the Cybersecurity & Infrastructure Security Agency, an operational component of the U.S. Department of Homeland Security, recommends installing antivirus software, firewalls and email filters. CISA also advises upgrading all applications and operating systems, as outdated programs are frequent targets for ransomware.

Users can defend themselves, too, by verifying email senders and cautiously approaching all email attachments. One should only use a single card for all online purchases to prevent access to multiple financial accounts. Most importantly, people should stay current on cybercrime trends to remain ahead of the curve.

Remember that hackers cannot access records we do not upload. With caution and common sense, we can better protect ourselves from the growing threat of ransomware and other malicious activities online.

by -
0 646
Pixabay photo

The recent ransomware attack against the Suffolk County government has raised important questions about the relationship between citizens, governments and technologies.

A confirmed ransomware event took place in early September. The hack crippled the county’s information technology infrastructure, and recovery efforts remain ongoing. 

In the wake of these events, the hack prompted critics to question the digitization of sensitive information and how governments can better secure their IT networks.

What is ransomware?

Nick Nikiforakis is an associate professor in the Department of Computer Science at Stony Brook University. His research focuses on web security and privacy. In an interview, he described how ransomware works.

“Ransomware is, effectively, malicious software that infiltrates a machine, starts encrypting all sorts of private documents, spreadsheets, anything that is of value, and then leaks out to the attacker the encryption key and potentially the data that was encrypted,” he said. 

Some forms of ransomware affect only a single machine, according to Nikiforakis. Other strains may spread into several devices, potentially infecting an entire network.

Ransomware is the confirmed vector of attack for Suffolk County. However, how hackers first entered the county’s system is unknown to the public. 

While the details of the county hack are scanty, Nikiforakis said cyberattackers commonly use emails with malicious attachments. In other instances, they can locate vulnerable software within a network, exploit that weakness and breach that system. Once hackers gain access to the system, they hold sensitive information for ransom. 

“The original idea behind ransomware is that if you don’t pay the attacker the money that they ask, then you lose access to your data,” Nikiforakis said. 

Backup software was developed, in part, to mitigate this concern. Regardless, as technologies have evolved, so has cybercrime. 

“Even if you have the ability to restore your data from backups, now you have to deal with the attacker having access to your data and threatening you with making that data public, which is what’s happening in this case,” Nikiforakis said.

Based on the information available, Nikiforakis said the attackers likely gained access to speeding tickets and various titles, among other sensitive materials. “This is definitely a cause for concern, and that is why, in certain cases, people decide to pay, to avoid this blowback that will come from the data being made publicly available.”

A question of payment

Ransomware raises an ethical dilemma for government officials, namely whether to use public funds to pay a ransom.

“People can take a philosophical approach and say, ‘We don’t negotiate with terrorists,’ and I understand that,” Nikiforakis said, “But then the rational thing for the attacker to do is to make that data available to the public. Because if he doesn’t, then the next victim will also not pay him.” 

The profitability of the ransomware operation depends upon the victim trusting that the criminals will comply with the conditions of the transaction. The ransomware business model would fail if cyberattackers generally went against their word.

For this reason, Nikiforakis said payment and compliance could sometimes be in the interests of both parties. 

“I think it’s a very rational decision to say, ‘Let’s pay and accept this as a financial loss and let’s make sure that this doesn’t happen again,’” he said.

In Suffolk County, however, putting this theoretical framework into action is more complicated. Responsibility for paying ransomware payments would be vested in the Office of the Comptroller, which oversees the county’s finances. 

During an election interview last month with county Comptroller John Kennedy Jr. (R), he hinted that compromising with cybercriminals is off the table.

“There is no predicate in the charter, in the New York State County Law, in the Suffolk County code, to take taxpayer money and give it to a criminal,” he said.

‘Technology is moving so quickly that it is incredibly challenging for government to keep up.’ 

— Sarah Anker

The effect on the county’s government operations

The ransomware attack has also aggravated concerns over securing the county’s IT apparatus. Kennedy likened the problem to a fire code, saying fire codes often include provisions for masonry walls and other buffers that reduce the spread of a fire.

“If a fire starts, it doesn’t take down the whole complex. It stops at the masonry wall,” he said. “Our system was not configured with those hard breaks, other than some separation of function out in Riverhead in the County Clerk’s Office.” 

Suffolk County Legislator Sarah Anker (D-Mount Sinai), whose office was attacked by ransomware in 2017, has advocated for serious IT reform for some time. She followed the county’s technology closely and expressed frustration over how the initial attack occurred.

“I could tell, and I could feel, that there needed to be more done,” she said. “It has hampered the government, it has affected our constituents. Maybe it could have been worse, but it should have never happened.”

Suffolk County Sheriff Errol Toulon Jr. (D) explained his office’s many challenges since the hack. Though communications systems are slowly returning online, the initial attack disrupted both external and internal communications within the Sheriff’s Office.

“From a jail and police perspective, it really hindered us in the beginning,” he said. “Emails that we received from other law enforcement agencies or any communication with our community was stopped for a significant amount of time.”

New York State’s Division of Homeland Security and Emergency assisted the Sheriff’s Office as Toulon’s staff worked without an operational communication network. Because of this coordination, Toulon maintained that the functions of the jails were more or less appropriately executed.

“We wanted to make sure that any individual that was supposed to be released from our custody was released on time,” the county sheriff said. “No one was incarcerated longer than they had to be.” 

Preparing for the future

Toulon suggested the existing IT network is too centralized and interconnected. To prevent future failure of the entire network, he proposed creating separate silos for each department.

“I feel that the District Attorney’s Office, the Sheriff’s Office, the [County] Clerk’s Office and the Comptroller’s Office should be totally separate from the County Executive’s Office,” Toulon said, “So if, god forbid, this were to happen again in the future, we wouldn’t be directly impacted like everyone else.”

Anker said she and a newly formed panel of county legislators are beginning to explore ways to harden the network and apply strategies that work elsewhere.

“As we move forward, we need to see what the other municipalities and corporations are doing,” she said. “What types of programs and software do they have that prevent these attacks?”

The rate of software development, according to Anker, is outpacing the ability of governments to respond effectively. While IT departments must remain ahead of the cybercriminals to keep their digital infrastructure safe, staying out front is easier said than done.

“Technology is moving so quickly that it is incredibly challenging for government to keep up,” she said. “I would like to see more accountability in all respects and from everyone as we move forward with new technology.”

While the recent cyberattack focuses on the government, Anker believes ordinary citizens are also at risk from hostile online actors. The county legislator contended more work should be done to alert community members of these dangers.

“Not enough is being done regarding community outreach,” she said. “There needs to be more education on preventing an attack even on your home computer.”

Nikiforakis proposed that greater attention be given to digitizing personal records. According to him, those records in the wrong hands could unleash great harm. 

“Ransomware was a big game-changer for attackers because it allows them to monetize data that would not be traditionally monetizable,” he said. “Through ransomware, suddenly everything that is of value can be monetized.”

The SBU associate professor supports software upgrades, cybersecurity protocols and other measures that protect against ransomware. But, he said, a broader conversation needs to take place about the nature of digitization and whether individuals and governments should store sensitive files online.

“More and more things that didn’t used to be online are suddenly available online,” he said. “We have to reassess the eagerness with which we put everything online and see whether the convenience that we get out of these systems being online is a good return on investment, given the risks.”

TBR News Media is your local news and entertainment website.
We provide you with the latest breaking news and information for your community.
Contact us: [email protected]

Most Viewed

©