Rehabilitation Journey
In a digital age, libraries have become frequent targets for cyber-attacks. In October 2023, two major public libraries, the Orion Township Public Library (OTPL) and Toronto Public Library (TPL), found themselves in the crosshairs.
The Orion Township Public Library managed to halt a ransomware attack mid-strike, but not without consequences. Tens of thousands of books piled up at their maintenance and operations center, as staff reverted to pen and paper for circulation and had to reimage over 1,000 computers. The name of the IT director who managed the situation remains undisclosed. However, OTPL's website was overwhelmed by a denial-of-service attack and had to be temporarily replaced.
In a more devastating breach, Toronto Public Library faced a similar attack in the same month. Despite digital systems going offline, all 100 branches remained open. TPL staff processed new library card registrations first, then worked through 1.4 million returns and renewals manually, creating a backlog of work that needed to be digitized later. The crisis accelerated TPL's long-term digital marketing priorities.
Both libraries sought peer support from other institutions that had experienced similar attacks, including Boston, the British Library, and Singapore. They adopted new security mechanisms and protocols, including stronger firewalls, multifactor authentication, phishing simulations, and more robust intrusion detection.
Seattle Public Library joined the list of breached libraries in May 2024. To combat the attack, they engaged several outside consultants, including cybersecurity firms Critical Insight and Alvaka. Remarkably, OTPL restored systems within days due to recoverable copies in deleted folders, while Seattle Public Library is still in the process of recovery.
Orchestrated cyberattacks have become a global concern, with over 15 million cyberattacks occurring worldwide annually since 2020. Recovery from these attacks is often long, complicated, and costly. However, the resilience and adaptability shown by these libraries serve as a testament to their commitment to serving their communities, even in the face of adversity.
At SPL, staff received updates via printed memos and an emergency phone line. At TPL, staff continued providing services manually, creating a backlog of work that needed to be digitized later. TPL's leadership, in response to the crisis, accelerated long-term digital marketing priorities, aiming to strengthen their digital infrastructure and better protect their resources and services.
OTPL's cyber insurance plan provided immediate assistance after the attack, a testament to the importance of such coverage in today's digital landscape. As libraries continue to evolve and adapt to the digital age, so too must their cybersecurity measures, ensuring they remain safe havens for knowledge and information in the face of increasing cyber threats.
