The attack on the council prompted a comment from Robert Nobilo, ANZ Regional Director at cybersecurity firm Virsec on what he says needs to be done to “successfully reduce the attack surface, especially in local government councils”.
In a statement on its website the City of Stonnington says its investigation into an “IT incident first detected over the weekend” is still underway.
“At this time, Council has reinstated phone lines and email services, however we may not be receiving all external emails. If you have any urgent customer requests please call us on 8290 1333,” the council says.
“We appreciate everyone’s patience as we work to bring our systems back online.”
Virsec’s Robert Nobilo further commented that,“The recent cyberattack against the Stonnington Council illustrates the growing rise of cybercrime against Australian organisations, particularly in the public sector.
“While the motivation of the attack remains unclear, we do know that today’s adversaries are better funded and able to remain stealth and undetected until after the intrusion has taken place. Most government organisations, both large and small, are vulnerable and do not have the adequate resources to protect them.
“Conventional cybersecurity tools such as EDR platforms and threat feeds are focused on post-incident – which is useful information after a cyberattack has taken place.
“To successfully reduce the attack surface, there needs to be a mind shift towards preventing cyberattacks as they are happening, allowing the attackers zero dwell time.
“There are tools, processes and procedures that can be used to help organisations prevent bad actors from gaining a foothold into their systems,” Nobilo concluded.