Overcoming Cyber Attacks

|

article image
Are businesses today doing enough to succeed in the battle against cyber security threats and are the traditional methods they are using the most effective? Cyber challenges facing today’s businesses Man in the middle attacks, Phishing, Rogue software /downloads, Unpatched vulnerabilities, Targeted attacks (APTs). Are you protected? Over 288,000 new cyber threats are reported every day

Spotlight

FIRMUS

Firmus is a Latin word for strong, reliable and solid and these values form the main foundation of the organization. Established in 2008, Firmus is the award winning regional Cyber-security consulting company; with offices in Hong Kong and Malaysia. This 2016 Cyber Security Service Provider of Year winner (awarded by Cyber Security Malaysia) specializes in Critical Infrastructure Protection, SCADA/ICS Security, Cyber Threat Intelligence Services, Enterprise Security / Risk Management, Compliance, Certification and Info-security Talent Search.

OTHER ARTICLES

Guest Blog: Cyber security guidance for remote working

Article | March 20, 2020

In these challenging times, it’s sad to learn that cyber criminals are only increasing their activity as they look to capitalise on the Covid-19 crisis. With the NCSC (National Cyber Security Centre) issuing warnings of such activity on a daily basis, it’s important that we all work to protect our businesses from the damage of cybercrime. As many of us move to working from home, the opportunity for cyber attacks only increases, so it’s vital that we work together with our IT colleagues to adopt good cyber health practices. If you are working from home, you should only be using a VPN (Virtual Private Network) or a secure home network with strong end-to-end encryption; e.g. Office 365 SSL session. Don’t be tempted to use public wifi, as hackers can position themselves between you and the access point.

Read More

Coronavirus and the Cybersecurity Threat Landscape

Article | March 20, 2020

Cybersecurity professionals are always interested in understanding how evolving events shape the threat landscape. Events such as WannaCry and NotPetya may have temporarily crippled technology environments that were running with third-rate security*, but the repercussions from the coronavirus will hit every organization, no matter how resilient they thought they were. No single event to date has changed the tech threat landscape more than the consequences and impacts developing around the Coronavirus (aka SARS-CoV-2 and the disease CoViD-19). Then there are the business consequences, such as the sudden changes in consumer patterns and steep loss of income. The coronavirus is unmistakably a black swan event. It falls outside of the outliers. It creates a situation that many security professionals are familiar with: The Medusa Effect.

Read More

Ryuk: Defending Against This Increasingly Busy Ransomware Family

Article | March 20, 2020

On December 16, 2019, the U.S. Coast Guard disclosed a security incident at a facility regulated by the Maritime Transportation Security Act (MTSA). Forensic analysis suggests that the incident might have begun when an employee clicked on a link embedded in a phishing email.This action enabled a threat actor to set Ryuk ransomware loose on the facility’s network. Ultimately, the infection spread to all IT network files, leading Ryuk to disrupt the corporate IT network and prevent critical process control monitoring systems from functioning properly. Phishing is one of the primary infection vectors for most ransomware families, but there’s an interesting twist with this particular family. As noted by Malwarebytes, a typical Ryuk attack begins when a user opens a weaponized Microsoft Office document attached to a phishing email. Opening the document causes a malicious macro to execute a PowerShell command that attempts to download the banking trojan Emotet. This has the ability to download additional malware onto an infected machine that retrieves and executes Trickbot.

Read More

What Lessons Can We Takeaway from Las Vegas’ Recent Thwarted Cyberattack?

Article | March 20, 2020

Picture this: a news story detailing a cyberattack in which no data was exfiltrated, thousands (or even millions) of credit card details weren’t stolen, and no data was breached. While this isn’t the type of headline we often see, it recently became a reality in Las Vegas, Nev. On January 7, 2020, news broke that the city of Las Vegas had successfully avoided a cyberattack. While not many details were offered in the city’s public statement, local press reported that the attack did employ an email vector, likely in the form of a direct ransomware attack or phishing attack. The use of the word “devastating” in the public statement led many to believe ransomware was involved. This inference isn’t farfetched—and is likely a correct conclusion—given that cities throughout the U.S. have seen ransomware attacks on critical systems. Attacks that have cost those cities millions of dollars.

Read More

Spotlight

FIRMUS

Firmus is a Latin word for strong, reliable and solid and these values form the main foundation of the organization. Established in 2008, Firmus is the award winning regional Cyber-security consulting company; with offices in Hong Kong and Malaysia. This 2016 Cyber Security Service Provider of Year winner (awarded by Cyber Security Malaysia) specializes in Critical Infrastructure Protection, SCADA/ICS Security, Cyber Threat Intelligence Services, Enterprise Security / Risk Management, Compliance, Certification and Info-security Talent Search.

Events