You are here

Home » Cybersecurity

Cybersecurity

ACSC Small Business Cybersecurity Guide

The Australian Cyber Security Centre (ACSC) has published a guide intended to help small businesses protect themselves from the most common cybersecurity incidents. It identifies and explains the most common types of cyber threats and what can be done to protect a business, with some examples being malicious software, automatic updates, and multi-factor authentication. It also includes a series of checklists, including on people and procedures, as well as a glossary of terms.

Aperture: A Claroty Podcast, Features WaterISAC to Discuss Oldsmar and Sector Cybersecurity

As the country continues discussing the cyber incident which occurred at the Oldsmar Florida Water Treatment Plant on February 5, 2021, it is important to continue highlighting the need for information sharing across the sector. Michael Mimoso, Aperture’s host and Claroty Editorial Director invited Water ISAC Managing Director Michael Arceneaux and Cyber Threat Analyst Jennifer Lyn Walker to discuss the incident, how it underscores the need for better information-sharing about incidents, and improved security hygiene inside critical infrastructure sectors such as water and wastewater.

DHS Emphasizes CISA’s Role in Announcing Steps to Improve Cybersecurity

Yesterday U.S. Department of Homeland Security (DHS) Secretary Alejandro Mayorkas announced a variety of steps he plans his department to take to further address cyber threats to the nation. Cybersecurity and Infrastructure Security Agency (CISA) will be responsible for or have a significant role in implementing many of these steps, some of which involve building on existing efforts.

FBI PIN: Telephony Denial of Service Attacks Can Disrupt Emergency Call Center Operations

The FBI has published a Private Industry Notification (PIN) to provide awareness regarding Telephony Denial of Service (TDoS) attacks, noting they can affect the availability and readiness of emergency call centers and undermine public trust in these services. The PIN further discusses the impacts these attacks can have on call centers and threat actors’ motives, which can include to advance political or social causes or to extort municipalities for financial gain.

CISA Alert: North Korean Cryptocurrency Malware “AppleJeus”

The Cybersecurity and Infrastructure Security Agency (CISA) has published an alert to highlight the cyber threat to cryptocurrency posed by North Korea and provide mitigation recommendations. CISA refers to the malware and other activity by the North Korean government as “AppleJeus.” In a series of seven malware analysis reports (MARs), it provides full technical details of the malware and associated indicators of compromise. Access the alert and MARs at CISA.

Even the Basics are Critical for Critical Infrastructure

The dust (new details/disclosures) seems to be settling on the incident at the Oldsmar, Florida Water Treatment Plant that occurred on February 5, 2021. If you haven’t already, now is a good time to assess that your utility is not as vulnerable to the same basic cybersecurity shortcomings that reportedly contributed to the incident and/or have been identified during the investigation.

Security Tips for Social Media and Social Networking Apps

The Australian Cyber Security Centre (ACSC) has posted advice on secure usage of social media and social networking or messaging apps, underscoring that both can pose a number of security and privacy risks to organizations and individuals when used in an inappropriate or unsafe manner. It also observes that social networking or messaging apps are a common way for an adversary to gather information on organizations and their employees, projects, and systems.

Egregor Ransomware Members Arrested

Law enforcement authorities arrested members of the Egregor ransomware cartel in Ukraine last week, the result of a joint investigation by French and Ukrainian police. The arrested suspects are believed to be some of these "affiliates" (or partners) of the Egregor gang, whose job was to hack into corporate networks and deploy the ransomware. They are also believed to have provided logistical and financial support to help prop up operations.

Joint Cybersecurity Advisory (TLP:WHITE): Compromise of U.S. Water Treatment Facility

Federal government partners have just released a TLP:WHITE* Joint Cybersecurity Advisory on the recent compromise of a U.S. water treatment facility. This product provides a summary of the incident informed by personnel who assisted with the onsite response, threat overviews based on what was observed, and series of recommendations organizations are encouraged to consider to protect themselves against similar activity.

Pages

Subscribe to Cybersecurity