All it took was one email to evacuate the Brighton Jewish Community Center and launch a multi-agency investigation Tuesday morning.
“[The] JCC actually did the right thing in the process of protocol that they followed in alerting authorities and taking it seriously,” cyber security expert Paul Robinson said.
Robinson works for Greycastle Security, a firm in Rochester that deals with threats and scams online.
“They have to be taken seriously. Back in the day, it used to be where you get something from an email, a threat, and it was not taken seriously. This is becoming a threat vector to basically terrorize folks by putting these threats out there,” Robinson said.
Robinson said the next step for the JCC will be finding out who actually sent the email and that could get tricky.
“Sometimes people will spoof emails. They’ll steal credentials and take an email address to make it seem like it’s coming from somewhere else.”
Robinson said that’s the biggest issue cyber experts like him are dealing with right now.
“Someone got your email name and password and stole those credentials from you. They’re acting like it came from you when it didn’t.”
Robinson thinks the JCC incident should be an example for other organizations who might receive threats.
“It goes to show you that having the right plan in place and following proper protocol is paramount to anything, whether you’re dealing with a scam or the attack today,” Robinson said.