Reporting Cybersecurity Breaches in Miami City Systems

Miami, Florida city employees, contractors, and residents who discover or suspect a cybersecurity breach in City of Miami systems must act quickly to preserve evidence and notify the proper authorities. This guide explains who is responsible, the notification steps under Florida law, and how to report incidents to city IT and law enforcement so the city can contain damage and meet legal obligations.

What to report and who should act

Report incidents that affect availability, integrity, or confidentiality of city systems or data, including unauthorized access, ransomware, data exfiltration, or service disruptions. Internal staff should follow the City of Miami Information Technology Department's incident procedures and contact the city security team immediately via the department contact page City of Miami Information Technology Department^[1]. External parties who find evidence (researchers, vendors, contractors) should preserve logs and notify the city point of contact without publicly disclosing exploit details.

Immediate steps to contain and report

• Isolate affected systems to stop spread and document the timeline and scope.
• Collect and preserve logs, timestamps, and any malware samples for forensic review.
• Notify the City of Miami IT security contact and your departmental IT lead immediately. See the city IT contact page City of Miami Information Technology Department^[1].
• If criminal activity or extortion (ransomware) is suspected, report to law enforcement and to the FBI/IC3 for federal coordination FBI IC3^[3].
• Follow chain-of-custody procedures when transferring evidence to vendors or law enforcement.

Notification requirements under Florida law

Florida Statute 501.171 requires notification to affected individuals and, in certain cases, to the Attorney General after a breach of personal information. Review the statute text for required elements, timing, and exceptions. See the official statute text for full requirements Florida Statute 501.171^[2].

Penalties & Enforcement

Enforcement and penalties for breaches involving personal information may involve state action under Florida law and administrative or contractual remedies by the City of Miami. Specific monetary fines tied to municipal breaches are not specified on the cited municipal pages; consulte the Florida statute for civil remedies and enforcement authorities Florida Statute 501.171^[2].

• Fine amounts: not specified on the cited city pages; state statutes may provide for civil penalties—see the statute for details.
• Escalation: first vs repeat or continuing offences are not specified on the cited municipal pages.
• Non-monetary sanctions: injunctive orders, corrective measures, requirements to notify affected individuals, contract termination, and court actions are possible remedies; exact remedies depend on the enforcing authority and are not fully itemized on the cited municipal pages.
• Enforcer: Florida Attorney General enforces state consumer protection/breach rules; the City of Miami Information Technology Department and City Attorney handle internal response and any municipal administrative action City of Miami Information Technology Department^[1].
• Appeals/review: timelines and appeal routes for municipal administrative actions are not specified on the cited municipal pages; state enforcement actions follow procedures in state law or agency rules.

Applications & Forms

No specific City of Miami public form for reporting a cybersecurity incident was published on the department pages referenced; internal incident reporting forms and vendor submission procedures are maintained by the City of Miami Information Technology Department and provided to city staff and contractors on request City of Miami Information Technology Department^[1]. For state-required consumer breach notices, follow guidance in Florida Statute 501.171 Florida Statute 501.171^[2].

How-To

1. Isolate affected systems and preserve volatile evidence (memory, logs).
2. Notify your departmental IT lead and the City of Miami Information Technology Department immediately; follow internal escalation procedures.^[1]
3. Document the incident timeline, affected systems, and data types; gather logs and snapshots for forensics.
4. If personal data of Florida residents is involved, review Florida Statute 501.171 and prepare required notifications to individuals and, if required, to the Attorney General.^[2]
5. If crime is suspected or you face extortion, report to law enforcement and file a complaint with FBI IC3.^[3]
6. Follow city guidance for public communications and do not disclose technical details that could enable exploitation.

FAQ

Who do I contact first for a suspected breach in a City of Miami system?

Contact your departmental IT lead and the City of Miami Information Technology Department immediately; use the department contact page for the official phone/email.^[1]

Do I have to notify affected residents?

Yes, if the breach involves personal information as defined by Florida law, notification requirements under Florida Statute 501.171 apply; review the statute for timing and content requirements.^[2]

Should I report ransomware or extortion to federal authorities?

If extortion or criminal activity is suspected, report to local law enforcement and file with FBI IC3 to enable federal coordination.^[3]

Key Takeaways

• Act quickly: isolate systems and preserve evidence.
• Notify City of Miami IT and your departmental lead immediately.
• Follow Florida Statute 501.171 for breach-notification duties to residents.

Help and Support / Resources

• City of Miami Information Technology Department
• City of Miami Police Department
• Florida Attorney General - Office of the Attorney General

1. [1] City of Miami Information Technology Department
2. [2] Florida Statute 501.171 - Security of Confidential Personal Information
3. [3] FBI Internet Crime Complaint Center (IC3)