According to sources, Geauga County Department of Water Resources (a Critical Infrastructure organization in Ohio) was hit with a cyber attack. It was first reported on 2023-04-26.

If You're in Ohio, You're at Increased Risk

Cybersecurity for Critical Infrastructure

Manage your organization’s attack surface with SecuLore’s 24/7 network monitoring services.

  • 24/7 Threat Monitoring

  • Automated & AI Threat Detection

  • Proactive Threat Hunting

  • Incident Response & Remediation

  • Forensics & Root Cause Analysis

Source 1  |  2023-04-26

Water Resources’ Email Server Breached

“A cyber-attack originating in Russia took out a GCDWR email server early in the morning of April 12. Emergency ADP board meetings were held on both April 13 and 17 to address the issue. “

“An endpoint cybersecurity product ADP installed on all servers and workstations on the county’s network — alerted ADP to possible nefarious activity attempting to access and control the server, Walder said. Given the persistent nature of the critical attack, CrowdStrike automatically blocked access to the server and put in motion a series of procedures and instructions for ADP to further isolate and protect the county’s network infrastructure.“

“Walder said the server in question is an “end-of-life, end-of-support server,” meaning it is running an operating system from 2012 and software from 2016 that has not been properly service-patched. “

““The server was ultimately powered off by water resources staff, preventing further analysis by ADP or CrowdStrike,” Walder said. However, the infected email server is one of five servers the water resources department operates without ADP’s oversight. Walder said the department has also neglected to keep its other vulnerable servers patched and up to date. “

Guarding Against Ransomware

  • August 16, 2023

    Ransomware is on the Rise Again: Defense Against New Players

  • November 9, 2022

    Ransomware’s Hidden Costs: What You Need To Know

  • August 11, 2021

    How to Prevent and Respond to Ransomware Attacks

  • January 25, 2017

    How to Defend Public Safety from Ransomware

Cybersecurity for Critical Infrastructure

SecuLore provides Managed Detection and Response (MDR) to protect our nation’s critical infrastructure from cyber threats. Our expertise is built on deep knowledge of 9-1-1 technology, cyberwarfare, and ethical hacking, ensuring the highest level of cybersecurity for public safety agencies.

  • 24/7 Vulnerability & Threat Monitoring

  • Automated & AI Threat Detection

  • Specialized Threat Intelligence

  • Proactive Threat Hunting

  • Incident Response & Remediation

  • Forensics & Root Cause Analysis