Restricted
Executive Summary:
FEMA’s Cyber Unit has identified threats indicating a possible cyber attack on the national emergency response systems. The group behind this threat, CrisisCore, aims to incapacitate emergency communication channels and data centers, potentially during natural disasters or major emergencies, to amplify chaos and hinder response efforts.
Threat Details:
- Group Name: CrisisCore
- Motivation: Creating maximum disruption during emergency events.
- Capabilities: Disabling emergency communication systems, corrupting data integrity.
Targeted Systems:
- Emergency Communication Networks: Including public warning systems and first responder communication channels.
- Data Centers: Hosting emergency operation plans and response protocols.
Attack Strategy:
- Infrastructure Sabotage: Targeting physical and cyber infrastructure to disrupt emergency communications.
- Ransomware Attacks: Locking access to critical data and systems during emergencies.
Risk Mitigation:
- Enhance physical and cyber security measures for critical emergency infrastructure.
- Develop and regularly update disaster recovery and business continuity plans.
- Conduct regular emergency response drills incorporating cyber attack scenarios.