I feel like they are in the mode “search for the scapegoat.” Baltimore Council President Scott to form panel to examine city’s cybersecurity after crippling computer hack.
I wonder if his panel will discover past requests for IT support dollars that were deemed not important. Any bets? (On whether there were requests, or on whether his panel will find evidence of them?)
The ransomware attack last week on the city’s computer network has caused widespread problems across agencies, including shutting down systems essential for completing home sales in Baltimore.
“This cyberattack against Baltimore city government is a crisis of the utmost urgency,” Scott said.
Actually this guy said, after the previous hack, that they weren’t spending enough on IT security. But it’s easy for one politician to say “we should fix this.”
A review of city budgets shows that certain elements of cybersecurity strategy has lagged as funding has declined.
After they suffered a MAJOR attack about a year ago, funding for security DECLINED. They deserve whatever they get. And what they’ve got is, they can’t pay bills or accept payments. So there’s that.
Security isn’t free. It takes software, and people (who need training regularly) and probably outside audits. Oh, and training so people outside of IT don’t click on spear-phishing emails.
And people ask me why I will never work in Information Technology again. I don’t know how to do something with nothing. I can’t put 10 pounds in a 5-pound bag, not matter how loud you scream. And public bureaucracies aren’t that much different than private. (The best plan, in case of emergency, is to keep your resume updated on your PC at home.)