Defense

now browsing by tag

 
 

#comptia | #ransomware | Spike in Texas cyberattacks against municipalities has City of SA in constant defense mode

Source: National Cyber Security – Produced By Gregory Evans

SAN ANTONIO – Six months ago, cybercriminals attacked local government agencies in 23 Texas cities. The statewide attack brought the Lone Star State to the front and center of the discussion about cybercrime.

“Municipalities are always a target because we have very complex systems, broad responsibilities. Here in San Antonio, we have more than 40 departments and city services, almost 13,000 employees,” said City of San Antonio IT Director and Chief Information Officer Craig Hopkins.

Ransomware attacks in 23 Texas cities have officials taking preventive measures

Hopkins said he consistently prioritizes cybersecurity for those reasons and instead of training employees once a year, he sends out information once a month.

“Up to 95% of the incidents we have are usually driven by human error,” he said.

Hopkins teaches city employees about the main types of cyberattacks. He said “phishing” is the most common.

“Phishing basically says, ‘I want you to click on a link, and I want you to give up some information that you may not normally give. I can take over one account, and then I can impersonate you inside of your organization and move horizontally,’” Hopkins said.

He then explained a concept called “whaling.”

“Think of that as a big fish. People of a certain title, city manager, the chief financial officer — targeting them because if you can impersonate them, you can create influence over other people, so financial scams tend to come out,” Hopkins said.

Hopkins also warned about physical security, which can include people looking over your shoulder at confidential information, people calling your phone pretending to be someone else or people piggybacking into facilities where employees use an access card.

He said he could not go into specific technicalities of the city’s protective system, but he said all businesses should be taking preventive measures, especially agencies or companies with outdated systems.

Copyright 2020 by KSAT – All rights reserved.

Source link

The post #comptia | #ransomware | Spike in Texas cyberattacks against municipalities has City of SA in constant defense mode appeared first on National Cyber Security.

View full post on National Cyber Security

Fishtech Group Preps North Arkansas Cyber Defense Center

Source: National Cyber Security – Produced By Gregory Evans

Cybersecurity services provider Fishtech Group, which has a Top 200 MSSP arm, has announced plans to open a 10,000-square-foot Cyber Defense Center (CDC) in Rogers, Arkansas.

Fishtech’s Arkansas CDC will complement the company’s CDC in Martin City, Missouri. It will initially house 20 employees and expand to host up to 100 onsite staff, the company stated.

Also, the new CDC will be run by Fishtech CISO Kerry Kilker, a former Walmart executive who joined the company earlier this year. It is expected to open in the second quarter of next year.

Fishtech’s Arkansas CDC will bring cybersecurity training, technology and resources to Northwest Arkansas, the company said. In doing so, the CDC will help organizations bridge the cybersecurity resource and talent gap.

Approximately 58 percent of enterprises have unfilled cybersecurity positions, according to the 2019 “State of Cybersecurity” survey from information security organization ISACA. Furthermore, 62 percent of survey respondents said they have to wait three to six months to fill open cybersecurity positions.

Fishtech Joins the OneLogin Accelerate Partner Program

In addition to announcing plans to open a new CDC, Fishtech in April joined the OneLogin Accelerate identity and access management (IAM) partner program. Fishtech has incorporated the OneLogin unified access management (UAM) platform into its offerings and added IAM solutions to its portfolio.

Fishtech provides data-driven cybersecurity solutions designed to help organizations identify security gaps and comply with industry mandates, the company indicated. It also partners with other cybersecurity companies to deliver on-premises and cloud security solutions.

Source

The post Fishtech Group Preps North Arkansas Cyber Defense Center appeared first on National Cyber Security.

View full post on National Cyber Security

#cyberfraud | #cybercriminals | Cottage Grove Sentinel | Building a Digital Defense Against Medicare Scams

Source: National Cyber Security – Produced By Gregory Evans

More and more companies are offering services to test your DNA, allowing you to explore your genetic heritage. Eastern European? Chilean? Something super exotic that you never even considered as part of your ancestry? These tests can be spendy, though, so when someone offers you a special deal to do the testing for free, it sounds like a good deal. Scammers know this and have concocted a new scheme to steal your personal information.  

Our friends at the Federal Trade Commission (FTC) are receiving reports that callers, claiming to be from Medicare, are asking for personal information, such as Social Security or Medicare numbers, in exchange for a “free” DNA testing kit. The fraudster may make a convincing argument by claiming that the test is a “free way” to get an early diagnosis for diseases like cancer. However, the truth of the matter is that Medicare does not market DNA testing kits to the general public.  

Here are some tips on what you can do to avoid being a victim: 

  • If an alleged “government agency” demands personal information or payment, you can be sure it is a scam.  

  • Don’t rely on caller ID. Scammers can make it appear as if they were calling from a government-affiliated number.  

  • Never give anyone who randomly calls you information such as your bank account, credit card, Medicare or Social Security number. Scammers can use this information to either steal your identity and your money.  

  • You can report Medicare imposters at 1-800-MEDICARE and ftc.gov/complaint.  

As always, if you have been the victim of this online scam or any other cyber fraud, can also report it to the FBI’s Internet Crime Complaint Center at www.ic3.gov or call your local FBI office.  

Source link

The post #cyberfraud | #cybercriminals | Cottage Grove Sentinel | Building a Digital Defense Against Medicare Scams appeared first on National Cyber Security.

View full post on National Cyber Security

#nationalcybersecuritymonth | SPC Named Center of Excellence in Cyber Defense Education

Source: National Cyber Security – Produced By Gregory Evans

St. Petersburg College was recognized this month by The National Security Agency and the Department of Homeland Security.

  • SPC named Center of Excellence in cybersecurity education
  • Designated through academic year 2024
  • Allows school to further expand program
  • More Pinellas County stories

The school was named a National Center of Excellence in Cyber Defense Education. The recognition comes as October is Cybersecurity Awareness Month. 

Dr. James Stewart, Dean of the College of Computers and Information Technology at SPC, says the designation is an honor and will help the school expand its cybersecurity program. 

“We want to make sure that we’re number one, our students are number one, and that’s our goal,” said Stewart.

The students at SPC enrolled in the cybersecurity program to get hands-on experience, including learning how to block hackers.

“It’s really interesting to see how they kind of circumvent the common protections we have in place,” said student Lionel Plaisance. “When you’re working in cybersecurity, you have to have a really good idea not just about how one thing works but about how all the pieces come together.”

The dean says the designation will be on students’ diplomas. He also says this recognition will help them expand the program, including adding new classes focused on threat analysis. 

Source link

The post #nationalcybersecuritymonth | SPC Named Center of Excellence in Cyber Defense Education appeared first on National Cyber Security.

View full post on National Cyber Security

Africa Cyber Defense Summit 2018

General Cybersecurity Conference

 July 9 – 10, 2018 | Nairobi, Kenya

Cybersecurity Conference Description 

The World Economic Outlook 2017 has recognized that Africa currently hosts some of the fastest growing economies in the world and that the entire continent is set for a huge economic transformation. Information and communication technology and cyberspace are key enablers of African national visions including Kenya’s Vision 2030 which aims to use science, technology and innovation to transform Kenya into an industrialized and secure middle-income country.

Given the role of ICTs in Africa’s rapid economic growth, cybersecurity breaches and attacks have the potential to slow down development. It is urgent and important to drive vigorous African cybersecurity dialogue and action to enable the continent to secure our critical infrastructure and protect our sensitive data.

It is with this in mind that the Ministry of ICT, Kenya, the International Telecommunications Union and the African Union have partnered with Naseba and the Africa Cyberspace Network to hold the Africa Cyber Defence Summit scheduled for 09-10 July, 2018 at KICC, Nairobi, where over 300 delegates from across Africa and partners from across the globe will sit together address cybersecurity issues, enhance our continental cybersecurity strategies and promote cybersecurity-oriented businesses.

advertisement:

The post Africa Cyber Defense Summit 2018 appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

International Workshop on Defense Technology and Security (DTS)

General Cybersecurity Conference

 July 2 – 5, 2018 | Melbourne, Australia

Cybersecurity Conference Description

DTS 2018, International Workshop on Defense Technology and Security, will be held at the Monash University, Melbourne, Australia, July 2-5, 2018. (It is organized as a workshop of the 18th International Conference on Computational Science and Its Applications (ICCSA 2018))

This workshop aims to be the premier forum for the presentation of the state of the art research work in defense technology and security areas related to the theory, policy, law, technical development, applications and experiences.

advertisement:

The post International Workshop on Defense Technology and Security (DTS) appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

4th Annual Cyber Security for Defense

General Cybersecurity Conference

 June 25 – 27, 2018 | Washington DC, United States

Cybersecurity Conference Description 

Our Cyber Security for Defense series has proved to present the hottest and most critical topics within the Cyber Defense sector. Our three successful iterations have brought in a combined total of 600 attendees & speakers.

We recently learned from DISA, CIA, U.S. Army Cyber Protection Brigade, FBI, ODNI, Marine Corps, and Joint Staff J-6 (to name a few!) about how our defense and intelligence sector is combatting cyber real-world threats & attacks, and how we can better collaborate amongst the private sector.

As more Defense commands demand cyber security solutions to protect our country, the conversation must be expanded. That’s where the 4th Cyber Security for Defense comes in, covering priorities from our nation’s top military agencies on defending the United States from cyber attacks. Be sure to check back in for updates regarding next year’s conference.

advertisement:

The post 4th Annual Cyber Security for Defense appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

Will Your #Cybersecurity Defense #System Protect Your #Organization?

For a homeowner, the knowledge that a trained eye has evaluated the home security system — and attested that it is in good working order — can go a long way toward a good night’s sleep.

The same goes for business owners and executives in charge of keeping the company’s digital assets safe. Recent global ransomware attacks, such as the WannaCry and NotPetya strains, have highlighted the growing and pervasive risks to organizations of all sizes and in all sectors of the economy.

Many business owners and executives believe that they can manage these risks with technology such as firewalls and anti-virus software. However, just like an alarm system that has not been activated is useless, defensive technology will not overcome bad controls and human error.

Stakeholders Scrutinize Cybersecurity Defenses
Boards of directors, customers, employees, investors, business partners, and regulatory bodies expect organizations to have processes and controls designed to prevent, detect, and mitigate the effects of cybersecurity events. Increasingly, these stakeholders expect independent third-party reports that attest to the effectiveness of the organization’s cybersecurity risk management program.

But the challenge has been choosing from among a multitude of reporting frameworks and solution providers. In 2017, the American Institute of CPAs (AICPA) introduced a robust, industry-agnostic framework intended to provide the market with a conventional approach to evaluating and reporting on a company’s cybersecurity risk management program.

Read More….

advertisement:

The post Will Your #Cybersecurity Defense #System Protect Your #Organization? appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

Computer Network Defense Engineer

Computer Network Defense EngineerSource: National Cyber Security – Produced By Gregory Evans PSI Pax is currently recruiting for a Computer Network Defense Engineer to support our government customer in Indianapolis, IN.   The Computer Network Defense Engineer must be an IT Security professional with a strong background in engineering, implementing, and supporting security infrastructure to include web proxy/content filter, IPS/IDS, SIEM, firewall and […] View full post on AmIHackerProof.com | Can You Be Hacked?

NATO #pressing #forward on #cyber #defense, official says

Source: National Cyber Security – Produced By Gregory Evans

NATO is working on a “special doctrine” for cyber operations and taking steps to help member states bolster their cyber defenses, an official said Monday.

Merle Maigre, who directs a NATO-affiliated cyber center headquartered in Tallin, Estonia, outlined the alliance’s multi-pronged efforts on cybersecurity during an appearance at the Center for Strategic and International Studies in Washington, D.C.

“NATO is currently on its way to come to a better understanding and develop its thinking [of] how cyber defense is better reflected in both policy planning and military planning,” Maigre said. “NATO is developing a special doctrine for cyber operations. NATO’s center in Tallinn is the custodian for the doctrine.”

The alliance is also looking to provide better training for member states in cybersecurity, she said, which the Cooperative Cyber Defence Centre of Excellence in Tallinn is helping support.

Maigre added that the alliance is also focused on building “resilience” among member states so they can better protect their systems.

“Where NATO is currently going is helping the allies to build resilience, providing a framework for member states to have a better understanding of … their critical information protection, how these systems are being developed and who is responsible for that,” Maigre explained.

NATO has been increasingly focused on cybersecurity as threats have compounded in recent years. At the Warsaw summit last year, alliance members recognized cyberspace as a domain of operations. The alliance also recognizes cyber defense as a core part of its collective defense efforts.

NATO Secretary-General Jens Stoltenberg has also said that a cyberattack could trigger the Article 5 principle of collective defense, which declares an attack on one ally is an attack on all.

Maigre was asked Monday what cyber incidents, in particular, could trigger Article 5. Maigre did not offer up a specific example, instead stressing, “there’s nothing automatic about Article 5.”

“Article 5 requires North Atlantic Council, be it at the level of ambassadors, ministers or head of states and governments, to gather and make a decision, and that applies also to any country bombing other country,” Maigre said.

“It needs to be a consensus-based decision,” she later added. “No one can be against it.”

Tanel Sepp, a cyber official at Estonia’s defense ministry, explained that an invocation of Article 5 would depend on the type of cyberattack. The principle has been invoked only one time, following the Sept. 11 terrorist attacks against the United States.

“It is always and will always be a question of effects,” Sepp said. “What kind of attack are we talking about and what is impacted.”

The event in Washington reflected on a series of cyberattacks that hit Estonia in 2007 which authorities have pinned on Russia.

The post NATO #pressing #forward on #cyber #defense, official says appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures