According to sources, Geauga County Department of Water Resources (a Critical Infrastructure organization in Ohio) was hit with a cyber attack. It was first reported on 2023-04-26.
Source 1 | 2023-04-26
“A cyber-attack originating in Russia took out a GCDWR email server early in the morning of April 12. Emergency ADP board meetings were held on both April 13 and 17 to address the issue. “
“An endpoint cybersecurity product ADP installed on all servers and workstations on the county’s network — alerted ADP to possible nefarious activity attempting to access and control the server, Walder said. Given the persistent nature of the critical attack, CrowdStrike automatically blocked access to the server and put in motion a series of procedures and instructions for ADP to further isolate and protect the county’s network infrastructure.“
“Walder said the server in question is an “end-of-life, end-of-support server,” meaning it is running an operating system from 2012 and software from 2016 that has not been properly service-patched. “
““The server was ultimately powered off by water resources staff, preventing further analysis by ADP or CrowdStrike,” Walder said. However, the infected email server is one of five servers the water resources department operates without ADP’s oversight. Walder said the department has also neglected to keep its other vulnerable servers patched and up to date. “
Guarding Against Ransomware
Cybersecurity for Critical Infrastructure
SecuLore provides Managed Detection and Response (MDR) to protect our nation’s critical infrastructure from cyber threats. Our expertise is built on deep knowledge of 9-1-1 technology, cyberwarfare, and ethical hacking, ensuring the highest level of cybersecurity for public safety agencies.
