Update on Aug. 16 Ransomware Attack

August 21, 2019

Risk Management News

  • Share this:

The Texas Association of Counties (TAC) aims to keep Association members informed in the aftermath of the Aug. 16 ransomware attack that targeted governmental entities and support those who have coverage with the TAC Risk Management Pool (TAC RMP).

Please see the latest Texas Department of Information Resources update about the attack.

"As we move into this era of increasing threats of cyberattacks, TAC is here to provide information and education on new and active threats and security trends to help members keep county networks safe," said TAC Executive Director Susan Redford. "We will continue to respond, and to support counties with their evolving needs, including those posed by the recent legislation requiring that counties implement cybersecurity training."

TAC RMP has been working alongside multiple state agencies to gather information and initiate forensic investigations for affected TAC RMP members. At this time, officials believe the incident was perpetrated by one attacker who appears to have targeted mostly local law enforcement and smaller local governmental entities.

Affected members that have Public Officials Liability coverage with TAC RMP should contact Andrea Beard, Public Officials and Law Enforcement Liability Litigation Supervisor, at (512) 615-8987.

Members with this coverage also have access to the eRisk Hub, which provides a wide array of information, videos, sample policies and assessments on cybersecurity and awareness.  Contact your Risk Management Consultant for more information.

"We are diligently working to gather all information we can with our own investigation in concert with the state to assist TAC RMP members who have been affected and provide resources to assist them through this attack," said TAC Risk Management Services Director Michael Shannon.

See this article, provided by the Risk and Insurance Management Society, for general guidelines on cyber protection before and after a cyber incident.