FOR IMMEDIATE RELEASE
AUDITOR CHARLES E. WALDER RESPONDS TO TRUMBULL COUNTY CYBERSECURITY BREACH
CHARDON, OHIO – October 24, 2024 – Geauga County Auditor Charles E. Walder responds to recent events in Trumbull County’s Bazetta Township—where the disabling of multifactor authentication (MFA) led to significant loss of public funds—by assuring Geauga County that their governmental technology leaders maintain strict security measures to safeguard against cyberattacks.
“My Office and the Geauga County Automatic Data Processing (“ADP”) Board are committed to protecting public funds,” said Auditor Walder, who by law is the Administrator of Geauga County’s ADP Center, which handles IT services for the County and other political subdivisions. ADP plays a key role in advising Geauga County agencies and political subdivisions of new technologies, deploying equipment in a timely fashion, and coordinating procurement, system implementation, and maintenance. “Under ADP’s leadership, Geauga County has robust cybersecurity protocols and internal safeguards, including MFA,” said Auditor Walder.
Three years ago, ADP directed that all Geauga County employees must use MFA along with long, complex passwords. MFA is a vital security measure that requires users to authenticate their identity through multiple verification methods, typically combining something the user knows (such as a password) with something they have (like a one-time code or mobile device). This extra layer of security ensures that even if one method of authentication is compromised, unauthorized access is still prevented.
“Geauga ADP’s MFA policy is non-negotiable, and we expressly prohibit MFA deactivation,” ADP Chief Deputy Administrator Frank Antenucci said. “Disabling MFA creates a significant vulnerability—and as the recent Bazetta Township incident demonstrated—could have disastrous consequences, including unauthorized access and fraudulent transactions.”
In Geauga County, ADP requires that every governmental account with access to financial systems, email communications, and sensitive information is protected by MFA at all times. By enforcing this policy, ADP ensures that each login attempt requires multiple verifications, drastically reducing the likelihood of unauthorized users gaining access to financial systems or information. Furthermore, ADP continuously reviews and updates its policies to adapt to new cyber threats and industry best practices.
“MFA is not just an option – it’s a critical component of our overall cybersecurity strategy,” said Auditor Walder. “It is one of the most effective ways to protect against unauthorized access. We ensure that no one in our system can bypass this safeguard, making MFAs a cornerstone in our efforts to protect public funds from cybercriminals.”
Mandating MFA, alongside strict internal checks-and-balances, helps secure Geauga County’s systems and better protects public funds from emerging cyber threats.
“Public officials and employees are responsible for protecting public money,” Chief Deputy Administrator Antenucci said. “Along with the Auditor’s Office, ADP will continue to implement robust security measures to protect your money.”
For more information, please contact Kate Jacob McClain by email at [email protected].
