RALEIGH, NC (WNCN) – With cyber and ransomware attacks on the rise, North Carolina is trying to stop them with a combination of new technology and proactive measures.
Cyber attacks are no stranger to North Carolina authorities. For the past two years the state has Joint Cyber Security Task Force responded to 40 incidents – 19 of which were ransomware attacks.
In a meeting with the State Emergency Response Commission on Friday, the task force outlined its efforts to prevent these attacks.
The task force says it is offering municipalities and other public agencies free cyber hygiene assessments as well as a so-called penetration test to see where systems could be vulnerable to hackers.
If an authority is hacked, the task force sets up a special jump team.
“The NC National Guard will send three people,” said LT. Colonel Seth Barun. “There will be an incident response leader, a threat hunter, and a forensic analysis person.”
If it’s a major incident, the response will include more people.
Barun said many of the attacks target rural communities.
“They are targets of opportunity,” he said. “They have less than ideal security and become easy targets.”
According to a Raleigh-based cybersecurity expert, it’s relatively easy for the bad guys to break into a system.
Rob Downs from Managed IT solutions said the main threat right now is the simple phishing attempt.
“The vast majority of incoming threats are still email,” he said. “That’s the biggest pitfall.”
The best way to stop phishing emails is relatively simple. Contact the sender, but use this technique.
“Don’t hit ‘reply,” said Downs. “Start a new email because if you reply to this email it will go back to the bad actor.”
Before a ransomware attack takes place, the bad guys can hide in a computer system for a month or more to assess its vulnerabilities.
To prevent this from happening, the state is now offering free hardware that checks for suspicious activity.
“It’s a physical device that goes on the network and looks for and blocks malicious traffic,” said Tom McGrath, head of the cybersecurity task force.
After watching the online stream of Friday’s video conference, cybersecurity expert Downs praised the state’s efforts to give authorities more cybersecurity.
“Everything they had in there was mostly stuff that could be implemented at no additional cost,” he said. “You got the basics because unfortunately a lot of people don’t do them.”
Cyber security experts like Downs say that a lack of awareness of basic cybersecurity practices is what allows so many hackers to break into systems.
For this reason, experts recommend cyber training for anyone who uses a computer system because they say it only takes one mistake for a hacker to break into your server.