Cybersecurity

FBI PSA - Scammers Using Computer-Technical Support Impersonation Scams to Target Victims and Conduct Wire Transfers

The FBI has published a Public Service Announcement (PSA) advising the public on how to protect themselves from cyber criminals conducting computer-technical support scams. Technical support scams involve fraudsters posing as service representatives of a company's technical or computer repair service and contacting victims through email or by telephone about a highly priced, soon-to-renew subscription. According to the PSA, “Scammers request victims contact the scammers at a provided telephone number or email to cancel the renewal and receive a varying refund amount.

Read more about FBI PSA - Scammers Using Computer-Technical Support Impersonation Scams to Target Victims and Conduct Wire Transfers

Cyber Resilience – NSA Releases Guidance on How to Protect Against Software Memory Safety Issues

Today, the National Security Agency (NSA) published a new report offering guidance and recommendations to help software developers and operators prevent and mitigate software memory safety issues, which account for a large portion of exploitable vulnerabilities.

Read more about Cyber Resilience – NSA Releases Guidance on How to Protect Against Software Memory Safety Issues

Proofpoint – Cybersecurity Predictions for a Turbulent 2023

Last week, cybersecurity company Proofpoint released an assessment of cybersecurity predictions for 2023. Notably, Proofpoint forecasts that the commercialization of malware and other exploitation tools on the dark web will likely lead to an increase in cybercrime. The assessment also predicts that ongoing geopolitical tensions, such as the continuing Russian war in Ukraine, will likely catalyze new cyber attacks and expand systemic risk for organizations.

Read more about Proofpoint – Cybersecurity Predictions for a Turbulent 2023

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins - November 10, 2022

The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:

ICS Vulnerability Advisories:

Read more about CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins - November 10, 2022

CISA’s Eric Goldstein on a Practical Transformation for Vulnerability Management

WaterISAC is honored to have Eric Goldstein kick off Day 3 of H2OSecCon next week.

Read more about CISA’s Eric Goldstein on a Practical Transformation for Vulnerability Management

Threat Awareness – Emotet Returns After Four Month Break

BleepingComputer has reported on the Emotet botnet’s reawakening after its typical hiatus. Researchers from Cryptolaemus first observed the notorious botnet’s return after a four month break. According to the group, the most recent campaigns are utilizing stolen email reply chains to distribute a malicious Excel attachment that will download the malware.

Read more about Threat Awareness – Emotet Returns After Four Month Break

Threat Report – Microsoft Digital Defense Report 2022 Notes Rise in Attacks Against Critical Infrastructure

Last week, Microsoft released its annual Digital Defense Report, which includes aggregated security data from across the systems and networks Microsoft monitors to understand the scope and scale of cyber threats around the world. Most notably, the report found that cyber attacks targeting critical infrastructure have grown significantly.

Read more about Threat Report – Microsoft Digital Defense Report 2022 Notes Rise in Attacks Against Critical Infrastructure

FBI PIN – Hacktivists Use of DDoS Activity Causes Minor Impacts

The FBI published a TLP:CLEAR Private Industry Notification (PIN) warning of cyber threats emanating from hacktivist activity and to encourage organizations to implement the recommendations in the Mitigations section to reduce the likelihood and impact of distributed denial of service (DDoS) attacks.

Read more about FBI PIN – Hacktivists Use of DDoS Activity Causes Minor Impacts

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins - November 3, 2022

The Cybersecurity and Infrastructure Security Agency (CISA) has published the following ICS vulnerability advisories, as well as alerts, updates, and bulletins:

ICS Vulnerability Advisories:

Read more about CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins - November 3, 2022

Security Awareness – Recent SANS Survey Finds Cyber Defenses are Getting Stronger as Threats to OT/ICS Environments Remain High

Last week, the SANS Institute in collaboration with Nozomi Networks released a new report, The State of OT/ICS Cybersecurity in 2022 and Beyond, analyzing the latest trends in OT/ICS cybersecurity. The study revealed, among other findings, that more than a third of organizations don’t know whether they have been compromised and attacks on engineering workstations doubled in the last 12 months.

Read more about Security Awareness – Recent SANS Survey Finds Cyber Defenses are Getting Stronger as Threats to OT/ICS Environments Remain High

You are here

Cybersecurity

FBI PSA - Scammers Using Computer-Technical Support Impersonation Scams to Target Victims and Conduct Wire Transfers

Cyber Resilience – NSA Releases Guidance on How to Protect Against Software Memory Safety Issues

Proofpoint – Cybersecurity Predictions for a Turbulent 2023

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins - November 10, 2022

CISA’s Eric Goldstein on a Practical Transformation for Vulnerability Management

Threat Awareness – Emotet Returns After Four Month Break

Threat Report – Microsoft Digital Defense Report 2022 Notes Rise in Attacks Against Critical Infrastructure

FBI PIN – Hacktivists Use of DDoS Activity Causes Minor Impacts

CISA ICS Vulnerability Advisories and Alerts, Updates, and Bulletins - November 3, 2022

Security Awareness – Recent SANS Survey Finds Cyber Defenses are Getting Stronger as Threats to OT/ICS Environments Remain High

Pages

You are here

Cybersecurity

Pages

Footer Email Signup