Alabama state officials are responding to a cybersecurity incident that has affected certain state government systems. Governor Kay Ivey announced on May 13 that the state is addressing a “cybersecurity event” and advised residents to anticipate potential disruptions to government website access and other services.
The incident, first detected on May 9, involved the compromise of some state employee usernames and passwords. However, officials currently believe that no personally identifiable information of Alabama residents has been accessed.
The Alabama Office of Information Technology (OIT) has been working continuously to identify and mitigate the impact of the incident. Two third-party cybersecurity firms have been engaged to assist with the response, maintaining round-the-clock operations to contain the situation.
As a precautionary measure, all state agencies have been instructed to reset employee passwords. While the full scope of the incident remains under investigation, there have been no major disruptions to state services reported thus far.
Governor Ivey emphasized the importance of vigilance, reminding state employees to be cautious of potentially malicious emails. The state has not yet identified the responsible parties behind the cybersecurity event.
The OIT has established a dedicated webpage to provide updates on the incident. Officials have stated that, due to the ongoing nature of the investigation, information will be shared as it becomes available and as security protocols permit.
This incident highlights the growing threat of cyberattacks on government systems, underscoring the need for robust cybersecurity measures and preparedness.