Decide & Do: 4.5 Ransomware Actions
Are you next? Will criminals target your organization with ransomware? No one can say for sure, so prepare now.
Here are four and a half critical decisions to make – and things to do – before a crisis hits.
(What’s half a decision, you ask? What’s half an action, you may wonder. Read to end if you want to find out).
1. Do: Have a plan
This sounds so obvious, but I have seen major organizations in business and government scrambling to respond to a ransomware attack. Your plan should include at least these elements?
Communication
Forget E-mail
Do not rely on electronic mail: it might be out of operation. In a recent attack on a major government agency, the response team sent an e-mail to all employees – telling them that e-mail was out of commission. Yes, that happened, and yes, they really did that.
Set Up Alternative Communication Channels
Texts, good old-fashioned phone trees, personal emails and social media are all possibilities if your e-mail goes out. (Some might hope fervently for such a day, but that’s another discussion!)
Create Templates
Who communicates what, when, and to whom? How often, and under what circumstances? Who decides the message to the employees, to management, to the public? With whom will they coordinate? Write templates for these communications to save time under stressful emergency circumstances.
Update Information
Have you updated and tested the emergency communication channels? Are phone numbers, personal e-mails, and social media groups up to date?
Business Continuity
Systems
Clearly identify in advance your mission-critical systems. If possible, make sure to have automatic fail-over systems ready to go, tested, and updated. Do users need training on the use of the secondary system, or is it transparent?
Data
Do you have backups of critical data? Are the systems viable and tested? How long does it take to access data backups? If these are required, how much data, in terms of time could be lost – a day, a week, a month?
Time frames
Do you know, and have stakeholders agreed, on the acceptable duration (if any) of each system? How and when will you tell stakeholders, including the general public, of system outages and estimated times to return them to operation?
Containment and Mitigation
Containment
Do your security staff and technical personnel know how to limit the spread of malware? Do they have the technical skills to identify which systems are affected and which are still safe? Do they have the business savvy to know which users and systems are the most important to your organization?
Have they practiced and rehearsed these techniques recently?
Mitigation
Does your staff know how to minimize the effect of an attack, and fix problems in real-time?
2. Do: Rehearse the Plan and Make it Fun
Rehearsing for disaster, fun? Yes, it is possible. At one Federal site, we created a game – an actual physical board game – to simulate a system outage. We pitted two teams against one another to see which team could get back online first. The losing team wanted to do it again. (That’s like asking to do a second fire drill).
3. Decide: Will your organization pay the ransom?
The overwhelming advice is not to pay. Paying rewards criminality and provides no guarantee that your critical data will be available, or systems will come back online. Still, some organizations make the regrettable decision to pay the ransom instead of remaining offline.
No matter what your organization decides, the time to discuss this matter is before the attack, when heads are clear, and not during the attack, when stress reigns supreme.
4. Decide: Whether to go Public, and When
Transparency equals respect. It may be painful to expose your weakness, but in the long run it helps everyone, including your own organization. However, government agencies may not be at liberty to share technical details, and over-sharing can help the bad actors. Again, the time to decide this is before an attack occurs.
4.5 Do: Have a plan.
Yes, I said it already, but too many organizations lack a ransomware plan, so it needs repeating. (This is the “half” I promised earlier.)
Responding to ransomware is difficult, but not Mission Impossible. Even so, here is your assignment, should you choose to accept it:
- Write or update your ransomware response plan. Review and test the plan to make sure it will work and remember to make it fun!
- Comment on this post. Please let me know from your experience what works and what’s missing or incorrect.
Related Blog Posts
Big Data, Market Intelligence
For the United States Navy, data has become a cornerstone of its operations, guiding the course of missions, and ensuring the safety of personnel. Every facet of maritime endeavors, from intelligence gathering, to navigation and logistics, relies on a steady stream of accurate and timely data. Harnessing and making the best use of that data, though, comes with its own challenges. These can include limited bandwidth, stringent security protocols, and the sheer volume of information generated across a host of platforms.
Toan Le
Application Lifecycle, Education, Market Intelligence, State & Local Government
According to data contained in a recent study from Pediatrics, the official scientific journal of the American Academy of Pediatrics, the number of school shootings in the United States has increased dramatically every year since the 2017-2018 school year. At the same time, school mass shootings have become increasingly deadly. Given this trend and the risk posed by security threats to students and faculty, school districts are desperate to find solutions to improve school security.
Gabriel Zighelboim
Big Data & Analytics, Market Intelligence, State & Local Government
Since 2023, we have seen an explosion in the number of state data privacy laws, demonstrating a clear focus amongst state governments in data privacy. In fact, according to the National Conference of State Legislatures, “at least 40 states and Puerto Rico introduced or considered at least 350 consumer privacy bills in 2023.” These data privacy laws create protections for a range of several types of data, from general consumer data protections to specific protections for health data and minor data.
Gabriel Zighelboim
Federal Fiscal Year End, Federal Government, Market Intelligence, Technology
If you have been confused lately seeing multiple March dates with some mention of the federal budget tied to them, you are not crazy. There are in fact multiple budgets floating out there in the ether: some finalized versions for certain agencies, others still awaiting that vote and presidential approval for fiscal year 2024 (FY24), as well as a wholly new request for funding from the President for FY25 priorities. We will catch you up as succinctly as possible, and if FY24 sounds too confusing, read on to hear what’s catching attention across IT for FY25.
Susanna Patten
Cybersecurity, Federal Government, Market Intelligence, State & Local Government
The 2024 United States presidential election is rapidly approaching, and state and local governments are focusing their efforts on bolstering election security and ensuring the proper safeguards are in place.
Yvonne Maffia
Cybersecurity, Federal Government, Market Intelligence, State & Local Government
The 2024 United States presidential election is rapidly approaching, and state and local governments are focusing their efforts on bolstering election security and ensuring the proper safeguards are in place.
Yvonne Maffia
Cloud Computing, Cybersecurity, Market Intelligence
Originally passed in 2014, the Federal Information Technology Acquisition Reform Act (FITARA) was designed to improve the management of all-things-IT across federal agencies. It essentially realigned how the government purchases and updates its technology, with an aim at grading agencies based on their ability to adhere to and improve on the following categories:
Susanna Patten
Cloud Computing, Cybersecurity, Market Intelligence
Originally passed in 2014, the Federal Information Technology Acquisition Reform Act (FITARA) was designed to improve the management of all-things-IT across federal agencies. It essentially realigned how the government purchases and updates its technology, with an aim at grading agencies based on their ability to adhere to and improve on the following categories:
Susanna Patten
Market Intelligence, State & Local Government, Technology
The start of a new year often brings uncertainties; but in 2024 one thing is for certain—artificial intelligence (AI) is top of mind nationwide and is expected to have a transformational impact on our society both now and in the future.
Yvonne Maffia
Big Data & Analytics, Market Intelligence, State & Local Government
The year 2024 is just around the corner, and with a new year typically comes new priorities. However, some things, like digital government, are here to stay. Improving the Citizen Experience will continue to be a top priority both now and, in the future, as the modern world emphasizes the importance of personalized services that provide agility, accountability, transparency, equity, efficiency, adaptability.
Prioritizing Citizen Experience
Yvonne Maffia
Federal Government, Market Intelligence, News, Technology
We’re still in the first quarter of the fiscal year and headed toward the holiday season. Historically, that predicates a slower pace across the federal sector, but not this year. This year, artificial intelligence (AI) is having a moment, and nearly everyone across the public sector, including the White House and The Office of Management and Budget (OMB), has something to say about it.
Susanna Patten
Federal Government, Market Intelligence, Technology
The era of heightened environmental awareness calls for decisive action, and the federal government has stepped up to lead this transformative journey. Three federal agencies have carved out significant roles in funding and facilitating environmental remediation technologies: the Department of Energy (DOE), the Environmental Protection Agency (EPA), and the Department of Defense (DoD).
Dawit Blackwell
Federal Government, Healthcare, Market Intelligence, Technology
Modernizing the defense healthcare system has never been more front and center for Defense Health Agency (DHA), the Department of Defense's (DOD) primary arm that manages all things healthcare for military service members and their beneficiaries. With acts of war and terrorism arising from overseas and the possibility of having our troops involved in future conflicts, patient healthcare and service preparedness are top priorities for the agency. So, the DHA is looking to work across federal agencies and industry to strengthen its healthcare systems.
Toan Le
Market Intelligence, State & Local Government, Technology
Numerous reports by various organizations, including the Government Accountability Office, have consistently found insufficiencies in state unemployment insurance programs. These insufficiencies were laid bare during the COVID-19 pandemic when increased need for such services, combined with an increase in fraudulent activity targeting unemployment insurance programs, overtaxed states’ unemployment insurance systems.
Gabriel Zighelboim
Cloud Computing, Cybersecurity, Education, Market Intelligence, State & Local Government, Technology
The annual EDUCAUSE conference highlighted higher education technology trends, goals, challenges, and how to identify a way ahead for higher education institutions to be successful in today’s modern world.
Yvonne Maffia
Cloud Computing, Cybersecurity, Education, Market Intelligence, State & Local Government, Technology
The annual EDUCAUSE conference highlighted higher education technology trends, goals, challenges, and how to identify a way ahead for higher education institutions to be successful in today’s modern world.
Yvonne Maffia
Cybersecurity, Education, Federal Government, Market Intelligence, Technology
Over the last few months, there have been several recent cybersecurity initiatives at the federal level, aimed at bridging gaps in K-12 cybersecurity policy and strategy.
Yvonne Maffia
Cybersecurity, Education, Federal Government, Market Intelligence, Technology
Over the last few months, there have been several recent cybersecurity initiatives at the federal level, aimed at bridging gaps in K-12 cybersecurity policy and strategy.
Yvonne Maffia
Federal Government, Market Intelligence
Ah yes, we meet again. The last week of the fiscal year: the air is cooler, pumpkin spice is in everything and the government might shut down. That is, if a deal isn’t reached by midnight on September 30th. This feels even more common, mostly because it is. And I don’t know about you, but the word “shutdown” might sound scary, apropos leading up to Halloween I suppose, but it doesn’t have to be. We’ll talk about what exactly a shutdown is, and more importantly, what it is not.
Susanna Patten
Cloud Computing, Cybersecurity, Market Intelligence
The Air Force hosts an annual summit known as Department of the Air Force Information Technology and Cyberpower (DAFITC) in Montgomery, Alabama, right next to Maxwell Air Force Base. It’s an opportunity for Guardians, Airmen, academics, and IT industry to come together to discuss pain point remedies and high-level plans and strategies. It is also an opportunity for branch heads to strike deals that lead to the adoption of modern and effective systems, meant to enable air superiority. Ms.
Kevin Shaker
Cloud Computing, Cybersecurity, Market Intelligence
The Air Force hosts an annual summit known as Department of the Air Force Information Technology and Cyberpower (DAFITC) in Montgomery, Alabama, right next to Maxwell Air Force Base. It’s an opportunity for Guardians, Airmen, academics, and IT industry to come together to discuss pain point remedies and high-level plans and strategies. It is also an opportunity for branch heads to strike deals that lead to the adoption of modern and effective systems, meant to enable air superiority. Ms.
Kevin Shaker
Cybersecurity, Internet of Things, IT Infrastructure, Market Intelligence
IoT and Its Impact on Infrastructure and Governance
The Internet of Things (IoT) revolutionizes how governments, organizations, and citizens interact with the physical world. This wave of interconnected devices promises a transformative infrastructure and governmental operations shift. However as the reach of IoT grows, the implications — especially related to security — become even more profound.
Dawit Blackwell
Cybersecurity, Internet of Things, IT Infrastructure, Market Intelligence
IoT and Its Impact on Infrastructure and Governance
The Internet of Things (IoT) revolutionizes how governments, organizations, and citizens interact with the physical world. This wave of interconnected devices promises a transformative infrastructure and governmental operations shift. However as the reach of IoT grows, the implications — especially related to security — become even more profound.
Dawit Blackwell
Big Data & Analytics, Market Intelligence, State & Local Government
Data analytics played a pivotal role in state, local, and education (SLED) governments’ response to the COVID-19 pandemic, and the emphasis on the importance of data has only continued to magnify over the last couple of years. Data analytics and related technology tools provide a host of benefits ranging from real-time data analysis, increased transparency and accountability, streamlined citizen facing services, better decision making and savings in both costs and time.
Yvonne Maffia
Big Data & Analytics, Data and Analytics, Federal Government, Geospatial, Market Intelligence
As the demand for trustworthy visual data collection and advanced technologies to support strategic decision-making continues to rise, geospatial intelligence plays a vital role in delivering essential military and environmental insights to the intelligence community. Recently at the GEOINT Conference in St. Louis, leaders from several intelligence agencies shed light on the future of geospatial intelligence (GEOINT) and its relationship with emerging technologies.
Toan Le
Market Intelligence, Technology
The Market Insights team is closely monitoring the immediate and long-term effects of the debt ceiling agreement, and we'll keep you informed of any updates. Here are our initial observations:
Immediate Impact:
Lloyd McCoy
Federal Government, Market Intelligence, Technology
Edge computing is transforming the public sector, providing increased efficiency, better decision-making, and improved services. The use of AI and machine learning is driving the adoption of edge computing in both federal and state/local government sectors. We will be examining what edge computing means for the public sector, explore recent developments and specific federal contracts, and discuss opportunities for information technology (IT) vendors and partners in this growing field.
Dawit Blackwell
Federal Government, Market Intelligence, Technology
This is part of a podcast series where the TD SYNNEX Public Sector Market Insights team provides insights and analysis on IT opportunities across the public sector. This episode features Kevin Shaker, Senior Manager of Lead Gen & Market Intelligence where he discusses the opportunities around, and how to navigate, the federal government’s fiscal year-end. Listen to the full podcast here.
Kevin Shaker
Market Intelligence, State & Local Government, Technology
This is part of a podcast series where the Market Insights team provides insights and analysis on IT opportunities across the public sector. This episode features Yvonne Maffia, Senior Market Insights Analyst at TD SYNNEX Public Sector where she discusses how to leverage SLED Fiscal Year End Sales Opportunities. Listen to this podcast episode now.
Yvonne Maffia
Infrastructure, Market Intelligence, State & Local Government, Technology
Welcome to 2023 — an era of modernization where public sector information technology (IT) market growth is dominated by technologies that can create operational efficiencies and enhance the delivery of citizen-facing services. IT leaders are approaching municipality and jurisdictional operations from the lens of optimization, and there is only room for "smart" solutions.
Yvonne Maffia
Market Intelligence, State & Local Government, Technology
Cloud services continue to be a top priority for state chief information officers (CIOs), but the focus has accelerated due to the emergence of digital government and disruptions brought on by the Covid-19 pandemic. Over the last few years, we’ve seen cloud services quickly become a “must-have” for state, local and education (SLED) customers, emphasizing cost savings, scalability, agility, and flexibility.
Yvonne Maffia
Federal Government, Market Intelligence, Technology
Recently, we covered the top highlights and technology pinpoints to hone in on for the DoD’s share of the FY24 federal budget request. We’ll take a look at the civilian side of things as well, spotlighting five agencies in particular that will likely have among the biggest IT projects and initiatives across the federal civilian landscape in the next fiscal year. Spoiler alert – there’s a lot of funding to go around.
Susanna Patten
Federal Government, Market Intelligence, Technology
It’s March again, and that means the madness of the tournament, or rather the federal budget process, has begun. It’s the time of year when the federal government places its bets on priorities and initiatives that will require funding in the coming year(s). We’ll take a look at the Department of Defense’s (DoD’s) specific call-outs, what to watch for, and where you might place your own technologies across the complex landscape of agencies.
Readiness, R&D, and Dominance
Susanna Patten
Cybersecurity, Federal Government, Market Intelligence, Technology
The Department of Navy (DON) recently held its annual WEST Conference, this year with a strong emphasis on cybersecurity. The conference brought together key decision-makers from the Navy, Marine Corps, and Coast Guard, along with experts from various industries and government officials. The discussions were broad-ranging, covering topics related to naval warfare, technology, innovation, and cybersecurity.
Toan Le
Cybersecurity, Federal Government, Market Intelligence, Technology
The Department of Navy (DON) recently held its annual WEST Conference, this year with a strong emphasis on cybersecurity. The conference brought together key decision-makers from the Navy, Marine Corps, and Coast Guard, along with experts from various industries and government officials. The discussions were broad-ranging, covering topics related to naval warfare, technology, innovation, and cybersecurity.
Toan Le
Education, Market Intelligence, State & Local Government, Technology
In recent years, we have seen the rapid growth of esports (electronic sports), or competitive video gaming, with the global esports market already surpassing $1 billion and, according to a recent report from Stratview Research, expected to reach over $9 billion in 2028. Therefore, it should be no surprise that this trend has caught the interest of educational institutions, especially considering over 60% of esports fans are within the age range of the average secondary and post-secondary student, between 13 and 26 years old.
Gabriel Zighelboim
Federal Government, Market Intelligence, Technology
At a recent Armed Forces Communications & Electronics Association (AFCEA) DC luncheon, Defense Information Systems Agency (DISA) Director Lt. Gen. Robert J. Skinner highlighted three key priorities for the fiscal year 2023: posture, position and partnerships. These priorities reflect the agency's ongoing efforts to meet the changing threats of today and secure the future of its information systems.
Toan Le
Cybersecurity, Market Intelligence, State & Local Government
2022 was a noteworthy year for the technology sector, particularly as it relates to cybersecurity. The post-pandemic era of modernization exposed the fragility of U.S. public sector technology infrastructure and systems, widening attack surfaces and posing additional challenges for state, local and education leaders. We have witnessed the whole gamut of continually evolving security threats, ranging from election security breaches, nation-state actors, threats to critical infrastructure, ransomware attacks, hacktivism and more.
Yvonne Maffia
Cybersecurity, Market Intelligence, State & Local Government
2022 was a noteworthy year for the technology sector, particularly as it relates to cybersecurity. The post-pandemic era of modernization exposed the fragility of U.S. public sector technology infrastructure and systems, widening attack surfaces and posing additional challenges for state, local and education leaders. We have witnessed the whole gamut of continually evolving security threats, ranging from election security breaches, nation-state actors, threats to critical infrastructure, ransomware attacks, hacktivism and more.
Yvonne Maffia
Cloud Computing, Cybersecurity, Education, Federal Government, IT Infrastructure, State & Local Government, Technology
The Cybersecurity and Infrastructure Security Agency (CISA) has seen increased malicious activity with ransomware attacks against K 12 educational institutions. Malicious cyber actors target school computer systems, slowing access, and rendering the systems inaccessible to essential functions, including remote learning. In some instances, ransomware actors stole and threatened to leak confidential student data unless institutions paid a ransom.
Ransomware attacks on US government organizations cost $18.9bn in 2020.
Asad Zaman
Data and Analytics, Federal Government, Market Intelligence, Technology
The Department of Defense Intelligence Information System (DoDIIS) conference took place in San Antonio, Texas from December 12-15. Its annual gathering of industry and government personnel invites networking, exhibitors and speakers to take on the top IT challenges currently facing the Department of Defense (DOD). Principal Deputy Director of National Intelligence, Dr. Stacy Dixon, spoke to the audience at large regarding data, its challenges, and opportunities within the intelligence community (IC).
Susanna Patten
Cloud Computing, Cybersecurity, Federal Government, State & Local Government, Technology, Tips and How-Tos
TD Synnex Public Sector’s Chief Cybersecurity Technologist, Don Maclean sat down with Mark Guntrip, Senior Director of Security Strategy at Menlo Security, to discuss one of the latest emergent security threats.
James Hofsiss
Market Intelligence, State & Local Government
2022 is ending, and it is time for U.S. public sector leaders to reflect on lessons learned while planning for the upcoming state and local government fiscal year-end. This year’s NASCIO Annual Conference highlighted the post-pandemic technology trends and challenges that are defining 2023 policy agendas and the future of technology acquisitions. The conference referenced the State Chief Information Officer Survey which assessed state CIOs’ thoughts on a wide array of topics that affect their roles as public sector technology and business leaders in today’s modern world.
Yvonne Maffia
Cybersecurity, Market Intelligence, Technology
“We must find fresh ways to connect forces, allies, and partners that provide an effective response to the challenge of a highly contested environment not seen in the last 20 years. Given the challenges we face today and in the future, we simply have no choice but to become more interoperable,” said General CQ Brown JR., U.S. Air Force Chief.
Toan Le
Cybersecurity, Market Intelligence, Technology
“We must find fresh ways to connect forces, allies, and partners that provide an effective response to the challenge of a highly contested environment not seen in the last 20 years. Given the challenges we face today and in the future, we simply have no choice but to become more interoperable,” said General CQ Brown JR., U.S. Air Force Chief.
Toan Le
Education, Market Intelligence, Technology
This year’s EDUCAUSE Annual Conference highlighted trends and challenges currently dictating not only policy agendas but also information technology (IT) acquisitions for years to come. In particular, the conference referenced the EDUCAUSE Horizon Report, which addressed key technology trends and priorities impacting IT buying decisions and more generally, the future of teaching and learning.
FY23 Top Priorities
Yvonne Maffia
Market Intelligence
Interoperability for the Department of Defense (DoD) and Defense Health in particular speaks to the idea of information being more easily shared across systems. Technology vendors and channel partners who emphasize interoperability in the tools and solutions they sell to the DoD can find success anywhere in this vast department, from the warfighting side (for example, see our blog on Air Force interoperability) to the world of defense health.
Toan Le
Market Intelligence
On September 30, Congress and the White House passed a Continuing Resolution (CR), which funds the government through December 16, 2022. At this point, anyone keenly watching the budget process every year can tell you the likelihood of a CR being passed as opposed to a new budget by Oct 1st is all but guaranteed. CRs function as a temporary stopgap designed to avoid a government shutdown. However, it also locks funding to the previous fiscal year’s level and prevents new projects from beginning.
Susanna Patten
Cybersecurity
Cybersecurity Maturity Model Certification (CMMC) 2.0 is here. If your company is not prepared, the time to get ready is now, or your company may risk losing business with the Department of Defense (DoD).
The CMMC program requires cyber protection standards for companies in the Defense Industrial Base (DIB) and aims to protect sensitive unclassified information that the DoD shares with contractors and subcontractors.
Don Maclean
Cloud Computing, Cybersecurity, Technology, Tips and How-Tos
Every year, there are more and more security breaches, and it gets harder and harder to spot them. According to a leading cybersecurity vendor1, it takes almost seven months for organizations to find breaches, which gives malicious attackers plenty of time to get what they want.
Most often, system misconfigurations like default settings or credentials leave the door wide open for exploitation, resulting in these breaches. As organizations grow, this problem only gets worse because quick changes frequently result in skipped steps.
Heather Sweet