Cyber security expert weighs in on recent LA OMV cyberattack

KLFY News | December 04, 2019

Cyber security expert weighs in on recent LA OMV cyberattack
Two weeks ago, several Louisiana DMV’s were the victim of a ransomware attack that hit computer servers and disrupted critical functions across the state. Many of the DMV branch locations remain closed as state workers try to recover. News 10 spoke with a cyber security expert about the recovery process and why the government industry continues to be a prime target. Kierk Sanderlin, Head of Engineering with Check Point Software, said, “Typically, what we see is that malware like a virus gets introduced into the environment and it may be delivered through an email like a phishing email. It may be a link embedded on a website, but somebody clicks on something. Somebody opens the file that contains this malware which ultimately infects their mobile device laptop.” Louisiana’s Office of Motor Vehicles Commissioner Karen St. Germain told The Advocate that 28 percent of her agency’s 79 locations are up and running, and another six planned to open Monday. St. Germain says officials worked through the thanksgiving weekend on service restorations and the agency is opening offices “as fast as we possibly can.”

Spotlight

As our world becomes further connected and data driven, the burden to protect confidential information increases. Not only individual consumers, but large organizations need to be aware of the risk that unsecured information poses.

Related News

Cisco to Secure Its Blockchain-as-a-Service (BaaS) Platform for enterprise security

Cisco | June 10, 2020

Cisco has done some work on its own enterprise blockchain tools, the networking firm is also using blockchain internally. Cisco’s StealthWatch Cloud will be embedded in the enterprise blockchain platform offered by Lambda 256. The StealthWatch solution uses machine learning and behavioral modeling to respond to cybersecurity threats. South Korea’s Lambda 256 has partnered with Cisco for the security of its Blockchain as a Service (BaaS) platform, Luniverse. Cisco’s StealthWatch Cloud will be embedded in the enterprise blockchain platform offered by Lambda 256. The StealthWatch solution uses machine learning and behavioral modeling to respond to cybersecurity threats. Luniverse supports Hyperledger Fabric in its BaaS hosting offering. Even though this offering is enterprise focused, the company’s heritage is in the cryptocurrency sector. Lambda 256 is part of Dunamu, which operates the Upbit crypto exchange and also a venture investment fund with ten blockchain investments. While Cisco has done some work on its own enterprise blockchain tools, the networking firm is also using blockchain internally. Four months ago, it partnered with NEC to use blockchain to ensure the authenticity of its networking equipment and make sure software is not tampered with. Cisco is also a participant in the Trust Your Supplier offering from Chainyard to manager supplier qualifications. Other members include IBM, Lenovo and Nokia. Read more: CISCO'S 6 UNPATCHED INTERNAL SERVERS COMPROMISED While most technologies aim to improve enterprise and societal problems, blockchain technology could stand out given its transparency and security while remaining decentralized and inclusive. ~ Cisco Much has been written about blockchain’s potential as well as its unfulfilled promises. While blockchain is distributed and secure, verifying transactions through the network can be slow. As observers have indicated, blockchain could change industries, from finance to healthcare. From its origins as an airtight validation mechanism for bitcoin, a digital currency, enterprise blockchain technology has made its way into a range of industries, as it secures any valued digital asset. It does so by recording digital asset transactions—payments, medical records, votes, and potentially many other things. Blockchain is seen as immutable and secure because the permanent, append-only ledger is distributed among blocks across many physical storage nodes. Code can be embedded in the blockchain to customize its security and behavior even further. The result is a network of nodes that can locate relevant data – but that is protected from malicious hackers, because the hack would have to solve every hash solution in the chain–and the hash solutions are all spontaneous. It's easy to see how the complexity of the security rules outlined above, computationally intensive as they are, would make a blockchain as slow as molasses–and most are. Early blockchains could manage only one or two transactions per second, and even today, five to seven transactions per second is considered blindingly fast. That's a deal breaker in many scenarios. Conceptually, a blockchain is a decentralized, distributed network. In practice, however, since every node in the network is aware of every transaction, a consensus protocol is required–and that forces a tradeoff between decentralization and low transaction throughput. The methodologies emerging for scenario-specific blockchain implementation inevitably add a layer of complexity to an already complex undertaking. This complexity is the cost of doing business for a technology that swings for the fences quite assertively in an Internet-driven world, rife with security threats and infrastructural compromise. But any enterprise capable of wrestling with the intricate elegance of blockchain in the first place should be up to that task, and should reap game-changing rewards. Read more: GOOGLE TOP CHOICE FOR CYBERCRIMINALS FOR BRAND-IMPERSONATION SPEAR-PHISHING CAMPAIGNS

Read More

Terranova Security Recognized as a computer-based software framework for security awareness Representative Vendor in the Gartner

prnewswire | August 26, 2020

Gartner, Inc. has recognized Terranova Security as a Security Awareness Program Platforms Representative Vendor in its 2020 Market Guide for Security Awareness Computer-Based Training (SACBT). Terranova Security, a 2019 Gartner Peer Insights Customers' Choice vendor for SACBT, received the Peer Insights distinction as a vendor in a market that includes ready-to-use, interactive software modules. The effectiveness of the Terranova Security Awareness Platform is based on its content delivery capabilities, sophisticated and scalable reporting metrics, integrations with broader corporate learning systems, and the ability to test and evaluate the awareness training efficacy across a given end-user population. These capabilities help global organizations tackle some of the biggest challenges for security awareness programs: measuring security awareness activities, tailoring messaging for different audiences, and building a security-centric culture.

Read More

Cybersecurity expert talks online safety as people work from home, kids learn online

katv | August 24, 2020

As people continue to work from home and Arkansas students take classes virtually this year, online security is more important than ever.Chris Moss is the information security officer at Arkansas Tech University. He said one of the most important things people need to do right now is watch out for what devices are connecting to their home WiFi or hot spots, and making sure these devices are secure.All your data is going to flow across that wire, so if it's unsecured, anyone can see that wire," Moss said, "It's just not the little guy sitting. In the basement, you know, in the dark typing on the computer.

Read More

Spotlight

As our world becomes further connected and data driven, the burden to protect confidential information increases. Not only individual consumers, but large organizations need to be aware of the risk that unsecured information poses.