Cyber Incident Victim: Borough of Westwood
Date:
Dec 2018
Location:
United States of America
Summary
The Borough of Westwood experienced a cybersecurity incident involving unauthorized network access following the detection of unusual activity, prompting an investigation with third-party forensic experts. Malware was confirmed to have been introduced, potentially exposing sensitive information including names, Social Security numbers, driver’s license or state identification details, and financial account data, though no evidence confirmed actual data access or misuse. Authorities including the FBI, New Jersey State Police, and Bergen County Prosecutor’s Office were notified, and affected individuals were advised to monitor accounts while the municipality secured its systems and established a dedicated support line for inquiries.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 2 motives | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On or around December 22, 2018, the Borough of Westwood, New Jersey, detected unusual activity on its network. The municipality immediately initiated an investigation into the incident, engaging a third-party forensic firm to assist in determining the nature and scope of the activity. Forensic analysis confirmed that malware had been introduced to the network on December 22, 2018, indicating unauthorized access to certain portions of Westwood's systems. The investigation could not conclusively determine whether any specific data was accessed or exfiltrated by the threat actor during the breach period. Out of caution, Westwood proceeded with breach notifications due to the potential exposure of sensitive personal information stored within the compromised systems, including names, Social Security numbers, driver's license or state identification numbers, and financial account or payment card details. The forensic investigation found no evidence suggesting the unauthorized actor actually viewed, accessed, or obtained any information from the systems. No attempted or actual misuse of potentially exposed data had been identified at the time of notification.
Upon discovering the breach, Westwood implemented containment measures to secure its network and prevent further unauthorized access. The municipality collaborated with forensic investigators throughout the investigation process to assess the incident's full scope. Westwood reported the breach to law enforcement agencies including the Federal Bureau of Investigation, New Jersey State Police, and Bergen County Prosecutor's Office. The borough established a dedicated toll-free call center (877-830-7929) operating Monday through Friday from 9:00 a.m. to 9:00 p.m. Eastern Time to address inquiries from potentially affected individuals. A website (https://tinyurl.com/y2njfm35) was created to provide additional incident-related information. Notifications advised individuals to monitor financial accounts and credit reports for suspicious activity, directing them to resources such as annualcreditreport.com and providing contact details for the three major credit bureaus. The Federal Trade Commission's identity theft resources were also referenced, including their website (identitytheft.gov) and helpline (1-877-ID-THEFT). Westwood emphasized that while no evidence of data misuse existed, the notifications were issued proactively given the sensitive nature of potentially accessible information.