A City Faces a Malware Attack

Entrust
Malware attacked the City of Detroit, resulting in compromised information.

Malware attacked the City of Detroit, resulting in compromised information.

 

A recent malware attack against the city of Detroit points to the necessity of enterprise security in the fight against cybercrime. The problem began when a city employee logged on to their email and innocently clicked on a link within a message, according to The Detroit Free Press. Unfortunately, that link triggered the release of malware that quickly blocked access to certain files. Highly privileged information such as Social Security numbers for roughly 1,700 city personnel was included within these documents.

But Michigan Radio reported that despite these files getting frozen, the malware did not actually access their contents.

“To the best of our knowledge, no personal data has actually been disclosed,” said Beth Niblock, the city’s CIO. “But we obviously take any kind of malware, phishing, trojan, worms, viruses, security, very seriously.”

Credit monitoring only one step in improving security
In a characteristic move for enterprises affected by a breach, the city is offering those affected a free credit monitoring service. While credit monitoring is a good way for individuals to see if their personal finances are breached, it is important that all organizations affected also take measures to prevent against future attacks. This could be as simple as implementing a more secure authentication system or improving cloud security.

Entrust
Entrust

Entrust provides identity-based security solutions that empower enterprises, consumers, citizens and websites in more than 5,000 organizations spanning 85 countries. Entrust's identity-based approach offers the right balance between affordability, expertise and service. With more than 125 patents granted and pending, these world-class solutions include strong authentication, physical and logical access, credentialing, mobile security, fraud detection, digital certificates, SSL and PKI.

0 Comments

Add to the Conversation