How Local Governments Can Combat Cybercrime
Combat cybercrime by adopting cloud and generative artificial intelligence (AI) technologies
CivicPlus® Senior Vice President of Research and Development, Ben Sebree, recently shared with Help Net Security how local governments can combat cybercrime when adopting cloud and generative artificial intelligence (AI) technologies. Cybersecurity is a hot topic. In 2022, the average cost of a municipal data breach was approximately 4.2 million dollars. That’s double the cost of any other industry. Phishing was the main cybersecurity weakness, causing 43% of the attacks. Malware came in at number two at 32% of cyber hacks. Inside job cyberattacks rounded it out at 17%.
Cloud and Generative AI
Local governments adopt cloud and generative AI to save money and improve efficiency. These new tools allow for fresh avenues for crime. An excellent first step in counteracting cyberattacks is having strong security policies in place within your municipality. Ensure you and your staff have solid security training on the importance of authentication measures (e.g., two-step verification software) and what devices are authorized for government use.
Encryption
Suppose you utilize cloud storage, as many local governments do nowadays. In that case, it’s critical for only authorized individuals to have access to that data and that the access is gated on a must-have basis. Encrypting your municipal data and implementing intrusion detection systems to monitor your cloud storage helps quickly identify and respond to attacks before they can cause costly headaches.
Cloud Infrastructure
Whomever you choose to partner with as a cloud provider, check their security track history. Do they have a long past of unbreachable service? There’s shared responsibility between the municipality, the cloud service provider, and any software as a service (Saas) vendor, but the cloud storage provider needs to be equipped with a solid infrastructure. The shield is a collaborative effort. Your weakest link is a bad password or users who are not well-trained in phishing or malware scams.
AI Technology
The newest and perhaps most malicious risk is AI technology. The industry of AI is rapidly changing by the day and scaling at unprecedented speed. The ability to mimic human voices and seamlessly replicate false documents or images is a developing hacker method. As the hackers improve their tactics, so should your local government and security partners. Solid staff training and anti-phishing policies are your best defense in this uncharted territory. Your staff may be sent incredibly legitimate invoices, and understanding the correct procedure for receiving invoices can be the difference between a data hack and a data save. Local governments face multiple security threats, but with the proper education and security parameters, you can keep municipal and resident data safe.