Cyber Defense eMagazine October Edition for 2021

More documents

Recommendations

Info

#5 Accellion supply chain attack Between December 2020 and January 2021, Acellion patched various reported vulnerabilities. Accellion, a security software supplier, had a security leak in their FTA product, exposing the data of many of their clients to hackers. The Jones Day legal firm, Kroger supermarkets, and Shell Oil corporation, as well as other government and educational institutions, were among the high-profile customers affected. The Accellion File Transfer Appliance (FTA) is enterprise-level file transfer software. In December 2020, FireEye's Mandiant reported that the Clop ransomware group was extorting enterprises by exploiting previously unknown vulnerabilities in legacy software, threatening to disclose critical data acquired from vulnerable servers unless a ransom was paid. The programme was used "to transfer information as part of our customer support system [in] a segregated DMZ environment," according to the business, but it was kept away from production systems, codebases, and Qualys Cloud. However, a zero-day vulnerability in third-party software had already been exploited, and the corporation received an "integrity alert" on December 24 2020 signalling a possible compromise. Now in 2021 the reports show Accellion may still not be completely aware of the amount of compromise connected with these vulnerabilities, based on the company's assertions during the course of 2021. Furthermore, it is suspected that future reports of Accellion FTA abuse will reveal more firms, sectors, and countries than previously revealed, based on the number of industries and nations that comprise Accellion clients. #6 Channel Nine A cyber-attack on Australia's Channel Nine TV network had delayed live broadcasts, raising fears about the country's vulnerability to hackers. Several shows, including Weekend Today, were unable to air on Sunday 29th March 2021, according to the broadcaster. As soon as the service was discovered, it was disconnected from the rest of the government's networks as a precaution, and Australia's Cyber Security Centre were called in to investigate. The hack was being investigated as "criminal sabotage or the work of a foreign nation," according to Nine. This isn't the first time a media company has been hacked, and it's certainly not the first time a foreign power has been involved. In 2013, Chinese hackers attempted to mine the New York Times for important information, while in 2015, a catastrophic breach that drove a French TV network off the air appeared to be the work of radicals at first, before being tracked back to Russian hackers. How to protect your organisation from cyber-attacks as we head further into 2021: Seeing the devastation that cyber attacks can create should be enough to motivate you to take the required precautions right away. So, here are some things you can do to strengthen your company's cyber security framework and keep it safe from cyber threats. Cyber Defense eMagazine – October 2021 Edition 36 Copyright © 2021, Cyber Defense Magazine. All rights reserved worldwide.
Raise Cyber Security Awareness: When it comes to cyber security, uninformed workforce might be a company's biggest weakness. One of the most efficient strategies to safeguard your company from cyber attacks is to raise awareness among your staff about current and emerging cyber threats. Implement a Phishing Incident Response Tool: Educating your employees is only going to get you so far if you don't give them the tools they need to deal with cyber threats. A phishing incident response tool, can enable your employees to recognise and report questionable emails right away, decreasing cyber risks dramatically. Use a secure communications system: Your best option for managing a cyber threat sensitively would be to deploy a secure communications system, and provide extensive and ongoing training to your employees around the importance of that system. Not only would you extinguish the threat of mobile interception, but would also ensure complete privacy and security when sharing information about other potential breaches within your organisation. At Salt Communications we work with businesses of all sizes all around the world to enable them to have secure, confidential discussions wherever they are, at any time. While hackers leave digital footprints, they are also cunning, often disguising their traces and staying in systems for weeks, if not months, before being discovered. When it comes to causing havoc in an organisation, an encryption assault can be "a near-perfect crime". To disguise their tracks, attackers frequently delete the decryption keys, leaving their victims with little prospect of recovering the encrypted material. Protect yourself and your organisation now, before it's too late. To discuss this article in greater detail with the team, or to sign up for a free trial of Salt Communications contact us on info@saltcommunications.com or visit our website at saltcommunications.com. About Salt Communications Salt Communications is a multi-award winning cyber security company providing a fully enterprisemanaged software solution giving absolute privacy in mobile communications. It is easy to deploy and uses multi-layered encryption techniques to meet the highest of security standards. Salt Communications offers ‘Peace of Mind’ for Organisations who value their privacy, by giving them complete control and secure communications, to protect their trusted relationships and stay safe. Salt is headquartered in Belfast, N. Ireland, for more information visit Salt Communications. Cyber Defense eMagazine – October 2021 Edition 37 Copyright © 2021, Cyber Defense Magazine. All rights reserved worldwide.
Page 1 and 2: The Top 6 Cyber Attacks Of 2021 So
Page 3 and 4: Protecting SMBs from Current Cybers
Page 5 and 6: @CYBERDEFENSEMAG CYBER DEFENSE eMAG
Page 7 and 8: Cyber Defense eMagazine - October 2
Page 35: #2 Florida’s water system A hacke
Page 39 and 40: Source Code Protection Market Do we
Page 41 and 42: of script administration, no backup
Page 43 and 44: to steal “the keys to the kingdom
Page 45 and 46: Part 1 - Using a Proxy Server - BUR
Page 47 and 48: Below we have an example of interce
Page 49 and 50: Having the device UUID and being co
Page 51 and 52: In the second part, we demonstrate
Page 53 and 54: Currently, we are bound to use tech
Page 55 and 56: You can be a hacker too! Remember,
Page 57 and 58: The Brutal Reality of Brute Force A
Page 59 and 60: Multi-factor authentication is one
Page 61 and 62: Why outdated software poses cyberse
Page 63 and 64: About the Author Roman Davydov is a
Page 65 and 66: What data security risks do communi
Page 67 and 68: Is the Edge Really Secure? By Cheta
Page 69 and 70: Or, let’s spend some time discuss
Page 71 and 72: accessible. Different agencies have
Page 73 and 74: Making Sure the Lights Don’t Go O
Page 75 and 76: Gösgen’s IT Security Officer, Fr
Page 77 and 78: MFA works a few different ways, but
Page 79 and 80: Get Ahead of the Game: Packet Captu
Page 81 and 82: investigations and the ability to t
Page 83 and 84: Thousands of Fortinet VPN Account C
Page 85 and 86: and operating costs. FIDO2 is the s
Page 87 and 88:
As ports have been steadily ramping
Page 89 and 90:
About the Author Working at the int
Page 91 and 92:
Today’s Threat Landscape The 2021
Page 93 and 94:
Thwarting Today’s Phishing Attack
Page 95 and 96:
Security is Everyone’s Job Employ
Page 97 and 98:
CapitalOne data breach occurred as
Page 99 and 100:
About eSentire eSentire Inc., is th
Page 101 and 102:
Complying with regulations Security
Page 103:
Cyber Defense eMagazine - October 2
Page 106 and 107:
Page 109 and 110:
Page 111 and 112:
Page 113 and 114:
Page 115 and 116:
Free Monthly Cyber Defense eMagazin
Page 117 and 118:
show all

Cyber Defense eMagazine October Edition for 2021

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?