Journey Back to Normality
In the digital age, public institutions, including libraries, have unfortunately become frequent targets for ransomware attacks. Two notable cases occurred in Seattle and Toronto, each demonstrating the far-reaching impacts and the importance of preparedness.
Last October, Toronto Public Library (TPL) faced a devastating breach, leaving digital systems offline. The affected services included public computers, the library website, catalog and account access, and some digital materials and databases. Remarkably, TPL managed to keep all 100 library branches open during the attack. Staff continued providing services manually, creating a backlog of work that needed to be digitized later.
During this challenging time, TPL's cyber insurance plan proved to be a lifeline. Meanwhile, outside consultants were engaged for cybersecurity, data forensics, legal, and communication assistance. Library leaders reached out to colleagues in Boston, British Library, Singapore, and other institutions that had experienced ransomware incidents for advice and support.
Fast forward to May 2024, and Seattle Public Library (SPL) found itself in a similar predicament. More than 1,000 computers systemwide were reimaged, and staff reverted to pen and paper for circulation, facing similar challenges. Recovery from a ransomware attack can be long, complicated, and costly, as SPL learned firsthand.
Orion Township Public Library (OTPL) also experienced a ransomware attack in October 2023. IT staff managed to halt the attack mid-strike, but forensic specialists were unable to fully trace the source of the malware due to the servers being disconnected during the attack. OTPL launched a temporary website while working on a permanent rebuild.
It's crucial to note that since 2020, more than 15 million cyberattacks have occurred worldwide annually. The increasing frequency of these attacks underscores the need for robust cybersecurity measures in public institutions.
In the aftermath of these attacks, TPL staff processed new library card registrations first, then worked through 1.4 million returns and renewals after services had been restored. A denial-of-service attack in November 2023 overwhelmed OTPL's website and knocked it offline, further emphasising the importance of resilience in the face of cyber threats.
These instances serve as a reminder for all public institutions to prioritise cybersecurity, be prepared for potential attacks, and seek assistance when needed. Collaboration and learning from the experiences of others can help build a more secure digital future for our libraries and communities.
