Seattle Public Library systems shut down by cyberattack
The Seattle Public Library experienced a cyberattack, which led to the library’s systems being taken offline. This incident caused disruption in accessing the following:
- Staff and public computers
- E-books and e-audiobooks
- In-house Wi-Fi
- Online catalog and loaning systems
- The Seattle Public Library website
While physical book loans and in-person events are still available, online resources are currently unavailable. The library has not provided an estimated timeline for restoring its services.
In response to the attack, Nick Brigmon, Security Operations and Support Manager at Blumira, emphasized the importance of local libraries enhancing their cybersecurity measures. Despite libraries not typically being primary targets for cyberattacks, neglecting cybersecurity can leave them vulnerable.
Proactive cybersecurity serves as more than just a defense mechanism—it is a commitment to preserving the trust and safety of the community. By recognizing emerging threats and taking proactive steps, libraries can safeguard their valuable resources and information.
Implementing cybersecurity measures may be challenging for libraries with limited resources. However, there are simple steps that libraries can take to protect patrons’ information and maintain uninterrupted service for community members.
Libraries seeking guidance on initiating their cybersecurity journey can consider the following three steps:
- Conduct a thorough cybersecurity assessment: Engage a reputable cybersecurity consultant to identify vulnerabilities in the network infrastructure, software, and hardware, and stay informed about the latest threats.
- Provide employee training: Conduct cybersecurity training for staff members, create clear policies for identifying and reporting suspicious activities, and offer resources for recognizing common cyber threats like phishing attempts.
- Develop an incident response plan: Establish a comprehensive incident response plan, participate in training exercises to test the plan’s effectiveness, and establish communication protocols for notifying stakeholders and patrons in case of a breach.
