You are here

Home » Cybersecurity

Cybersecurity

CISA Alert: APT Groups Target Essential Services during COVID-19 Pandemic

The U.S. Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) has published a joint Alert with its U.K. counterpart, the National Cyber Security Centre (NCSC), warning that they continue to see indications advanced persistent threat (APT) groups are exploiting the COVID-19 pandemic. Although the Alert highlights activity by these actors against the healthcare sector, it also notes that other sectors, especially those that provide essential services during the pandemic, are being targeted. Targeted sectors include those associated with local governments.

FBI FLASH: COVID-19 Phishing Email Indicators

The FBI has published a TLP:WHITE FLASH message providing indicators of COVID-19 phishing emails to assist in network defense. The FBI advises that cyber criminals, who include advanced persistent threat (APT) groups, have crafted COVID-19-themed health, informational, and warning notice emails in an attempt to obtain online service credentials, such as those for Microsoft Office 365 accounts. Additionally, cyber criminals have attached archive files that contain malicious portable executables (PE) or JAVA.jar files to their phishing emails.

The Importance of Maintaining a Cybersecurity Culture During Trying Times

As many organizations had to fast-track remote access implementations to support a new and nearly exclusive stay-at-home workforce, it is possible security awareness reminders fell by the wayside. However, the seemingly endless digests of coronavirus-related cyber scams demonstrate the importance of maintaining a cybersecurity culture throughout the lifecycle of this pandemic and beyond.

Canadian Centre for Cyber Security COVID-19 Guide

The Canadian Centre for Cyber Security (the Cyber Centre) has published a guide containing focused cybersecurity advice during the COVID-19 pandemic. This guide, which is organized into sections of guidance for IT management, IT implementation, and client awareness, offers a curated selection of the Cyber Centre’s collection of advice and other products. For example, the IT management section highlights the Cyber Centre’s Cloud Security Risk Management guide, which outlines an integrated risk management approach to establishing cloud-based services.

Situational Awareness – Coronavirus Cyber Compendium

Another week of coronavirus means another week of cyber activity regarding coronavirus. Today we bring you some scam highlights, key developments, and interesting research. We start off with some intriguing COVID-19 Key Developments from risk intelligence organization Flashpoint, including government responses, law enforcement actions, cybercrime activity related to coronavirus, and trends in mis/disinformation.

CISA Alert: Microsoft Office 365 Security Recommendations

The U.S. Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) has published an Alert providing recommendations related to Microsoft Office 365 (O365) deployments, which organizations can review to ensure their environments have been properly configured to protect, detect, and respond against potential attackers. CISA adds that since many organizations have recently migrated to cloud collaboration services, such as O365, and perhaps did so speedily, they may not have fully considered the security configurations of these platforms.

Free Threat-blocking Service Launched for Canadians

The Canadian Internet Registration Authority (CIRA, the non-profit agency that managers the .ca Internet domain) and Canadian Centre for Cyber Security have teamed up to offer Canadian Shield, a free protected domain name system (DNS) service that prevents Canadians from connecting to malicious websites that might infect their devices and steal their personal information. CIRA is providing the threat blocking technology while the Canadian Centre for Cyber Security is offering its threat intelligence services – basically a who's-who list of every bad actor roaming the web.

Situational Awareness – Israel Reports Attempted SCADA Attack Against Water Systems

The Israel National Cyber Directorate issued an alert on April 23, stating the agency received reports of cyber intrusion attempts at wastewater treatment plants, water pumping stations, and sewers. Details are extremely limited, but based on guidance issued to energy and water sectors to immediately report any operational disruption and change passwords with emphasis on operational systems, particularly regarding chlorine control in water supplies, the attempted attack is believed to have targeted SCADA systems.

Pages

Subscribe to Cybersecurity