Cybersecurity Awareness Grows Among Local Governments and Organizations
Veolia hosts event to address increasing threats of cyberattacks on essential public services.
Veolia has initiated a series of informative events in the region over the past three years, aiming to share knowledge and raise awareness about solutions concerning water and sanitation services, which have become targets for cyberattacks.
The latest session, held on March 25 at the Mandelieu Conference Centre, focused explicitly on cybersecurity awareness.
Pierre Revet-Servettaz, the municipal delegate for Digital and New Technologies in Mandelieu-la-Napoule, stressed the urgent need for local authorities to protect themselves against cyberattacks and their potential repercussions.
Olivier Moulinas, director of Veolia Eau Côte d’Azur, expressed reassurance regarding the operational readiness of teams to prepare for and respond to cyber threats.
The event gathered representatives from various municipalities, businesses, and institutions to discuss the increasing prevalence of cyberattacks.
The objective of the roundtable was to share insights and raise awareness on how to combat these threats.
The digital ecosystem faces numerous threats, including strategic espionage, ransomware, phishing, and scams, with hacking becoming increasingly industrialized and profitable.
Recent reports indicate that 17% of local governments have experienced a cyberattack.
The National Cybersecurity Agency (ANSSI) identified and addressed 4,386 cybersecurity incidents in 2024, marking a 15% increase compared to the already high figures of 2023.
Understanding the motives behind cybercriminals is crucial, as highlighted by Kevin Heydon, the cybersecurity delegate for Provence-Alpes-Côte d’Azur at ANSSI.
Strategic espionage remains a primary motivator behind such attacks.
Ransomware, which encrypts and extorts data for profit, has become a growing threat.
This shift in approach, described as massive and opportunistic, sees cybercriminals operating with a level of organization akin to conventional businesses.
Awareness and preparedness are significantly lacking among potential targets.
Heydon emphasized the necessity of proactive measures, likening cybersecurity to securing a home—beginning with basic digital hygiene.
Cybercriminals, motivated by profitability, often target organizations that have not taken adequate protective measures.
Romain Aiello, a reserve officer in the cybersecurity anticipatory section of the PACA gendarmerie, echoed the understanding that cybercriminals seek maximum profit with minimum effort, complicating defenses for local governments.
Matthieu Bertin, Head of Information Systems Security at Veolia, noted the constant presence of threats faced by entities that have fully digitized systems.
He discussed protocols established over the past decade, highlighting the importance of system protection, effective monitoring tools, and backups to foster resilience against cyberattacks.
The human element is vital in this preparation, as employee awareness and training are key to preventing breaches.
It is also crucial to anticipate the long-term implications of a cyber crisis to ensure continuity of operations in degraded modes.
Franck Galland, founder of Aqua Sûreté and expert in hydraulic infrastructure security, stressed the importance of being operationally prepared to maintain services during an attack, including conducting crisis exercises.
A recent incident on August 23, 2023, saw a cyber intruder infiltrate the system of the Chamber of Commerce and Industry (CCI) of Provence-Alpes-Côte d’Azur.
Stéphane Bricca, who oversees the organization’s IT systems, recounted the disruptions, including a significant slowdown in internet access and data extraction leading to Germany.
The immediate decision to sever internet access across their sites was described as a shock.
Currently, the system has not fully regained its operational capability, underscoring the lingering impacts of such breaches.
In the event of a cyberattack, Colonel Christophe Torrisi from the Provence-Alpes-Côte d’Azur gendarmerie emphasizes critical immediate actions: isolating affected equipment, refraining from paying ransoms, preserving evidence, and filing a report.
Addressing the investigative aspect is paramount for understanding the extent of the breach and effectively restoring the system thereafter.
The latest session, held on March 25 at the Mandelieu Conference Centre, focused explicitly on cybersecurity awareness.
Pierre Revet-Servettaz, the municipal delegate for Digital and New Technologies in Mandelieu-la-Napoule, stressed the urgent need for local authorities to protect themselves against cyberattacks and their potential repercussions.
Olivier Moulinas, director of Veolia Eau Côte d’Azur, expressed reassurance regarding the operational readiness of teams to prepare for and respond to cyber threats.
The event gathered representatives from various municipalities, businesses, and institutions to discuss the increasing prevalence of cyberattacks.
The objective of the roundtable was to share insights and raise awareness on how to combat these threats.
The digital ecosystem faces numerous threats, including strategic espionage, ransomware, phishing, and scams, with hacking becoming increasingly industrialized and profitable.
Recent reports indicate that 17% of local governments have experienced a cyberattack.
The National Cybersecurity Agency (ANSSI) identified and addressed 4,386 cybersecurity incidents in 2024, marking a 15% increase compared to the already high figures of 2023.
Understanding the motives behind cybercriminals is crucial, as highlighted by Kevin Heydon, the cybersecurity delegate for Provence-Alpes-Côte d’Azur at ANSSI.
Strategic espionage remains a primary motivator behind such attacks.
Ransomware, which encrypts and extorts data for profit, has become a growing threat.
This shift in approach, described as massive and opportunistic, sees cybercriminals operating with a level of organization akin to conventional businesses.
Awareness and preparedness are significantly lacking among potential targets.
Heydon emphasized the necessity of proactive measures, likening cybersecurity to securing a home—beginning with basic digital hygiene.
Cybercriminals, motivated by profitability, often target organizations that have not taken adequate protective measures.
Romain Aiello, a reserve officer in the cybersecurity anticipatory section of the PACA gendarmerie, echoed the understanding that cybercriminals seek maximum profit with minimum effort, complicating defenses for local governments.
Matthieu Bertin, Head of Information Systems Security at Veolia, noted the constant presence of threats faced by entities that have fully digitized systems.
He discussed protocols established over the past decade, highlighting the importance of system protection, effective monitoring tools, and backups to foster resilience against cyberattacks.
The human element is vital in this preparation, as employee awareness and training are key to preventing breaches.
It is also crucial to anticipate the long-term implications of a cyber crisis to ensure continuity of operations in degraded modes.
Franck Galland, founder of Aqua Sûreté and expert in hydraulic infrastructure security, stressed the importance of being operationally prepared to maintain services during an attack, including conducting crisis exercises.
A recent incident on August 23, 2023, saw a cyber intruder infiltrate the system of the Chamber of Commerce and Industry (CCI) of Provence-Alpes-Côte d’Azur.
Stéphane Bricca, who oversees the organization’s IT systems, recounted the disruptions, including a significant slowdown in internet access and data extraction leading to Germany.
The immediate decision to sever internet access across their sites was described as a shock.
Currently, the system has not fully regained its operational capability, underscoring the lingering impacts of such breaches.
In the event of a cyberattack, Colonel Christophe Torrisi from the Provence-Alpes-Côte d’Azur gendarmerie emphasizes critical immediate actions: isolating affected equipment, refraining from paying ransoms, preserving evidence, and filing a report.
Addressing the investigative aspect is paramount for understanding the extent of the breach and effectively restoring the system thereafter.
