At the MACo Summer Conference, county officials stepped into the middle of a simulated ransomware attack, testing how local governments communicate and coordinate in the face of a crisis.
Hackers are increasingly targeting states and local governments with sophisticated cyberattacks. Securing government information systems is critical, as a cyber intrusion can be very disruptive, jeopardizing sensitive information, public safety, and delivering essential services.
The Summer Conference session, Ransomware Reality: Communicating Through a Cyberattack – An Interactive Exercise, placed participants in the “Phantom Phish” scenario, a coordinated phishing and ransomware incident that disrupted county operations, locked critical systems, and threatened resident data.
Working in groups, participants navigated real-time decisions on who to inform, what to disclose, when to release information, and how to communicate across agencies, to residents, and with the media. Teams then shared their strategies before expert panelists weighed in with practical lessons learned from real-world cyber incidents.
Speakers included county and State emergency management and communications leaders:
- Renesha Alphonso, Director of Communications, Anne Arundel County
- Robert Kelly, Chief Information Officer, St. Mary’s County
- Anna Sierra, Assistant Secretary, Strategy & External Affairs, Maryland Department of Emergency Management
- Taylor Munir, Local Cyber Preparedness Coordinator, Maryland Department of Emergency Management
- Travis Brown, Public Information Officer, Worcester County Health Department
Garrett County Commissioner Chair Paul Edwards moderated the session.
The exercise showed how a ransomware attack can quickly disrupt county operations and put resident data at risk. It also highlighted the importance of clear, timely communication as part of any cyber response.
More About MACo’s Summer Conference:
