You are here

Home » Cybersecurity

Cybersecurity

Cybersecurity Awareness Month 2022 – Behavior: Recognizing and Reporting Phishing

by Jennifer Lyn Walker

Given that some of the most notorious breaches and incidents started with a phish – and will continue to do so – it is imperative that our human firewalls are able to recognize and report phishing attempts when our hardware firewalls and other security controls fail to block them. Likewise, with each data breach more and more information is added to the cybercrime coffer for miscreants to use to launch even more phishing campaigns against individuals and the organizations we work for.

Axio Releases 2022 Ransomware Report, Weak Cyber Fundamentals Still Hampers Preparedness

Axio released its 2022 State of Ransomware Preparedness Report, which provides an overview of the state of the industry with regards to resiliency versus ransomware attacks. While the report notes some improvements, overall, it concludes that a lack of fundamental cybersecurity practices and controls continues to undermine any organizations’ attempts to defend against this threat.

Threat Awareness – FBI Issues PIN on Iranian Cyber Group Conducting Hack-and-Leak Operations

The FBI has published a TLP:WHITE Private Industry Notification (PIN) to provide awareness of the Iranian cyber group Emennet Pasargad and its ongoing hack-and-leak cyber operations, which include false-flag campaigns under the guise of multiple personas to avoid attribution. According to FBI reporting, Emennet Pasargad has been conducting hack-and-leak operations against organizations primarily in Israel.

Scam Awareness – FBI Issues PSA on Potential Fraud Schemes Targeting Individuals Seeking Federal Student Loan Forgiveness

The FBI has published a Public Service Announcement (PSA) warning the public of the potential for fraudulent websites, e-mails, texts, or phone scams aiming to defraud individuals seeking federal student loan forgiveness. Threat actors will seek to solicit personally identifiable information, financial information, or payment from potential victims.

Are you ready for an OT-impacting ransomware incident? – H2OSecCon’s Cyber Tabletop Exercise (TTX) Session

H2OSecCon attendees will have the opportunity on Day Two to actively participate in an afternoon tabletop exercise developed by Dragos for its new OT-CERT (Operational Technology – Cyber Emergency Readiness Team) program. The exercise is a facilitated discussion to provide water and wastewater utility OT and IT staff (operators, engineers, analysts, managers, supervisors, executives, etc.) an opportunity to practice cyber incident response processes and procedures based on an OT-impacting ransomware incident.

Pages

Subscribe to Cybersecurity