As you’ve most likely heard, a destructive ransomware attack called “WannaCry” struck hundreds of thousands of Internet users in nearly 100 countries this weekend. The malicious virus, which has been called the biggest worldwide cyberattack in history, locked Internet users’ files and demanded a payment to unlock them. Businesses and organizations all over the world are still dealing with the fallout from the attack. Emergency Reporting has not been affected by the cyberattack. We want to assure all of our customers that their data is safe, and that data security is the top priority at ER.
Screenshot of MalwareTech.com world map showing where computers have been infected (as of Monday) by WannaCry ransomware.
Secure, Cloud-Based Systems are Essential
As a fire chief, administrative officer, or other Fire and EMS stakeholder, you know that having your data compromised could be a nightmare to deal with. As reports describe chaos in hospitals and surgery centers that lost all access to medical records and other patient data, a cyberattack could also be crippling to your agency. If you rely on your city’s or county’s system administrator to defend against these threats, your agency’s data may not be a top priority in this type of situation. Or perhaps you rely on volunteers to manage your data and security, and they may not be available to you 24×7 to combat threats. That’s why it’s absolutely essential to have a secure, cloud-based system with a top-notch IT team to manage your records and data. Cyberattacks happen every day, and using a secure RMS will ensure that your data is safe.
How Emergency Reporting Protects Your Data
At Emergency Reporting, we believe our most important job is ensuring your Fire and EMS data is safe and secure. Our first line of defense is employing a world class team of system administrators and information security professionals. They are charged with managing our systems to meet the expectations of our many Department of Defense customers.
ER holds extremely high security standards and has implemented various best practices to keep customer data secure, including:
- Data at rest protection with AES, and data in motion protection with HTTPS and SSL encryption
- Operating at a DIACAP-compliant security level
- Complying with the Defense Information Systems Agency (DISA)’s Security Technical Implementation Guides (STIGs) for configuration standards
- Requiring two-factor authentication for ER staff for privileged system access
- Operating two physical data centers and several cloud instances hosted with Microsoft Azure
In addition to our careful regimen of system patching and security monitoring, our team observed the WannaCry threat progress and took additional steps to ensure our systems were as secure as possible.
Note: While the attack mainly hit businesses and large organizations, it’s still important that individuals with PCs running Windows take a few precautions – read this CNN Tech article for tips on how to protect your personal computer from the ransomware attack.
[Source Photo: Flickr user Christiaan Colen]