Resilience Area #1
Learning From Cybersecurity Incidents Examples of Recent Cyberattacks When it comes to government calamities, cybersecurity is in a league of its own.
First, many agencies are still finding their footing when it comes to protecting their
employees and operations online. Second, cybersecurity misfortunes can become
uniquely embarrassing for agencies. Beyond the bad publicity or financial damage
these disturbances can cause, they can
also expose sensitive information about the
public. When agencies are trusted to handle
constituents’ delicate data and fail, the result is potential damage to their relationship. The reality is that cybersecurity is no
longer a concern for just agencies’ IT
shops. Going forward, cybersecurity will
need to be a significant priority for every public-sector employee.
1. No one is permanently safe In March 2021, the FBI cautioned other federal agencies and private-sector
companies that cybercriminals were
taking advantage of a vulnerability in a
widespread computing product. According to the FBI, the gap in computing giant
Microsoft’s Exchange system left precious personally identifiable information and research and technology data at risk.
Even worse, the FBI assessed the activity to have potentially come from nation-
state actors. Citing past moves by Chinese
cyber actors, the FBI noted everything from academic institutions to nongovernmental organizations might be in similar danger.
The FBI recommended that possible victims
Bouncing Back: How Your Agency Can Handle Disruption and Embrace Resilience
13
