Business Continuity - Communication is Key During a Cyber Crisis
Cyberscoop highlights a March 2018 Ponemon Institute global study sponsored by IBM Resilient on the importance of cyber resilience for a strong security posture.
Cybersecurity
SamSam Ransomware: Intended for Targeted Attacks
SamSam ransomware has been involved in some high profile attacks recently, including the incident that involved Atlanta city government computers and systems earlier this year. Part of what SamSam so challenging to address is that it has evolved from its different version, making it more difficult to detect or track.
More Sectors Partnering with Australia’s New Cyber Threat Sharing Centers
More and more Australian businesses and organizations are entering into partnerships with the county’s newly formed joint cyber security centres (JCSCs). And as a result, the JCSCs now have relationships with an expanding number of critical infrastructure sectors, which includes the water and wastewater sector, the energy sector, and the commercial facilities sector, among many others. The JCSCs are designed to co-located government, business, and academic cybersecurity experts so that they can share data and advice on threats.
FTC, Partners Help Small Businesses Stop Scams
The Federal Trade Commission (FTC) has launched Operation Main Street, an effort with the Better Business Bureau (BBB) and law enforcement to educate small business owners on how to stop scams targeting their businesses.
Malware Analysis Report: HIDDEN COBRA’s TYPEFRAME Trojan
The NCCIC has provided a Malware Analysis Report (MAR) of TYPEFRAME, a Trojan malware variant used by HIDDEN COBRA. The U.S. government refers to all malicious cyber activity by the North Korean government as HIDDEN COBRA. This MAR includes malware descriptions related to HIDDEN COBRA, suggested response actions and recommended mitigation techniques.
Siemens SIMATIC PCS 7 (Update A) (ICSA-17-306-01) – Product Used in the Water and Wastewater and Energy Sectors
June 12, 2018
The NCCIC has updated this advisory with additional details on affected products and mitigation details. This advisory was initially published on November 2, 2017. NCCIC/ICS-CERT.
November 2, 2017
EU Parliament Calls Kaspersky “Confirmed as Malicious,” Recommends Ban
On June 13, the European Union (EU) Parliament passed a resolution characterizing Kaspersky as “confirmed as malicious.” While the resolution is not a ban or legally binding, it does recommend banning the company from information technology used throughout the EU. The vote signals the newest wave of challenges to the company from nations. In September 2017, the U.S.
Schneider Electric U.motion Builder (ICSA-18-163-01) – Product Used in the Energy Sector
The NCCIC has released an advisory on command injection, cross-site scripting, and improper input validation vulnerabilities in Schneider Electric U.motion Bulder. Versions prior to 1.3.4 are affected. Successful exploitation of these vulnerabilities could allow remote code execution. Schneider Electric has released firmware update Version 1.3.4, which includes fixes for these vulnerabilities.
Federal Authorities Announce Coordinated Effort to Disrupt BEC Schemes, Warn Partners of Pervasive Threat
Yesterday, the U.S. Department of Justice (DOJ) announced the culmination of “Operation Wire Wire,” a significant coordinated effort by federal departments and agencies to disrupt Business Email Compromise (BEC) schemes. Operation Wire Wire resulted in 74 arrests in the U.S. and overseas, the seizure of nearly $2.4 million, and the disruption and recovery of approximately $14 million in fraudulent wire transfers. BEC is a sophisticated scam that targets employees with access to company finances.
Microsoft Releases June 2018 Security Updates
Microsoft has released its monthly update to address vulnerabilities in its software.
Pages
