Cybersecurity

Ransomware Resilience – Best Practices to Block Ransomware on Endpoints

Sophos has written a blog post detailing six best practices from an updated version of its report on endpoint-related best practices for protecting against ransomware. The best practices include: turning on all policies and features of an endpoint, regularly reviewing the endpoint’s exclusions, enabling multi-factor authentication, ensuring endpoints are up-to-date and protected, maintaining general IT hygiene, and proactively hunting for adversaries within your network.

Read more about Ransomware Resilience – Best Practices to Block Ransomware on Endpoints

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins - December 6, 2022

The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:

ICS Vulnerability Advisories:

None

Alerts, Updates, and Bulletins:

CISA Adds One Known Exploited Vulnerability to Catalog

Read more about CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins - December 6, 2022

Joint Cybersecurity Advisory – #StopRansomware: Cuba Ransomware

Today, the Cybersecurity and Infrastructure Security Agency (CISA) and the FBI published a joint Cybersecurity Advisory (CSA) #StopRansomware: Cuba Ransomware to provide network defenders tactics, techniques, and procedures (TTPs) and indicators of compromise (IOCs) associated with Cuba ransomware threat actors.

Read more about Joint Cybersecurity Advisory – #StopRansomware: Cuba Ransomware

Security Awareness – Business Email Compromises Remain Enduring Threat to Industry

Despite all the attention on ransomware, business email compromise (BEC) attacks remain the most financially impacting cyber threat facing the private sector. According to FBI data, in 2021 BEC attacks were responsible for the loss of $2.4 billion, in comparison to a loss of $49.2 million to ransomware attacks.

Read more about Security Awareness – Business Email Compromises Remain Enduring Threat to Industry

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins - December 1, 2022

The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:

ICS Vulnerability Advisories:

Alerts, Updates, and Bulletins:

Read more about CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins - December 1, 2022

(December 1, 2022) Investigation Update to UK’s South Staffs Water Cyber Incident

According to the BBC, South Staffordshire PLC, the parent company of South Staffs Water and Cambridge Water, said it discovered its ransomware attackers (Cl0p/Clop) may have exfiltrated and potentially leaked bank details of its customers, although how many customers is currently unknown.

Read more about (December 1, 2022) Investigation Update to UK’s South Staffs Water Cyber Incident

Threat Awareness – Black Basta Ransomware Employs Qakbot in Latest Attack Chain

Last week, security researchers warned that the Black Basta ransomware gang is utilizing Qakbot malware as part of an aggressive and widespread campaign targeting U.S.-based organizations. Black Basta ransomware first became operational in April 2022 and since then it has become one of the most prolific Ransomware-as-a-Service (RaaS) groups.

Read more about Threat Awareness – Black Basta Ransomware Employs Qakbot in Latest Attack Chain

Security Awareness – Threat Actors Never Cease to Leverage Current Events to Spread Scams

With the FIFA World Cup in full swing, threat actors are seeking to exploit unsuspecting fans with a range of tactics to steal credentials, personal identifiable information (PII), and money. Scammers are employing social engineering tactics including phishing, fake apps, and malicious merchandising sites spoofing the branding of the FIFA World Cup in Qatar to target fans. The cybersecurity firm Group-IB observed more than 16,000 scam domains and 40 malicious apps in the Google Play store that were using FIFA World Cup 2022 branding to lure users.

Read more about Security Awareness – Threat Actors Never Cease to Leverage Current Events to Spread Scams

U.S. Government Bans Sales of Huawei, Hikvision, ZTE, and Dahua Equipment

The U.S. government, via the Federal Communications Commission (FCC), recently banned the sale of equipment from Chinese telecommunications and video surveillance vendors Huawei, ZTE, Hytera, Hikvision, and Dahua due to “unacceptable risks to national security.” Last week, the FCC adopted new rules prohibiting the aforementioned communications equipment being authorized for importation or sale in the country.

Read more about U.S. Government Bans Sales of Huawei, Hikvision, ZTE, and Dahua Equipment

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins - November 29, 2022

The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:

ICS Vulnerability Advisories:

Read more about CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins - November 29, 2022

You are here

Cybersecurity

Ransomware Resilience – Best Practices to Block Ransomware on Endpoints

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins - December 6, 2022

Joint Cybersecurity Advisory – #StopRansomware: Cuba Ransomware

Security Awareness – Business Email Compromises Remain Enduring Threat to Industry

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins - December 1, 2022

(December 1, 2022) Investigation Update to UK’s South Staffs Water Cyber Incident

Threat Awareness – Black Basta Ransomware Employs Qakbot in Latest Attack Chain

Security Awareness – Threat Actors Never Cease to Leverage Current Events to Spread Scams

U.S. Government Bans Sales of Huawei, Hikvision, ZTE, and Dahua Equipment

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins - November 29, 2022

Pages

You are here

Cybersecurity

Pages

Footer Email Signup