Reposted from EME-ISAC

A Jan. 21 ransomware attack on a Bucks County, Pennsylvania, computer-aided dispatch (CAD) system caused the temporary loss of automated services that were powered by the CAD system. Some critical functions typically provided by CAD systems include prioritizing and recording calls and locating and dispatching responders in the field. More recently, a Feb. 22 AT&T outage impacted FirstNet, the nationwide broadband network dedicated to first responders and public safety. The outage prompted the FirstNet Authority to form an After-Action Task Force to strengthen FirstNet’s preparedness for future outages. These two recent incidents are reminders of how important it is for emergency services agencies to have backup systems and processes in place in the event of a communications system outage, whether due to a cyberattack or other non-intentional cause. Earlier this month, the Cybersecurity and Infrastructure Security Agency (CISA) released two resources for emergency services agencies’ communications and cyber resiliency: 

(1) CISA updated its Public Safety Communications and Cyber Resiliency Toolkit with six new guidance documents that will help public safety agencies establish resiliency measures for their communications systems. One foundational guidance document in this Toolkit that is particularly relevant in light of recent incidents is Leveraging the Primary, Alternate, Contingency, Emergency (PACE) Plan in an Emergency Communications Ecosystem, by the National Council of Statewide Interoperability Coordinators (NCSWIC). PACE planning follows a simple and practical framework to help an organization prepare for backup communications capabilities in a wide variety of out-of-the-ordinary situations.

(2) CISA, SAFECOM and NCSWIC just launched a new 911 Cybersecurity Resource Hub. This one-stop shop compiles cybersecurity resources to make it easy for emergency communications centers (ECCs) to report a cyber incident, find real-world case studies, access cybersecurity education and training opportunities, and learn about best practices to identify and protect networks from cyberattacks. CISA, SAFECOM, and NCSWIC worked collaboratively with state and local public safety and emergency communications stakeholders to develop this interactive website.

See Original Post