Tag Archive for: Attack

Victor CSD Remaining Remote Wed. After Ransomware Attack

/in


VICTOR, N.Y. — The Victor Central School District gave an update on the ransomware attack that took place over the weekend, saying the FBI and Department of Homeland Security are now investigating.

That attack compromised district servers, knocking out internet, phones, and other systems like Schooltool and Transfinder.

Luckily school officials say no personal student or staff data was affected.

Students will remain learning remotely Wednesday.

Pre-K to third grade may have an opportunity to return to the classroom Thursday, but fifth through 12th grades will be remote for the remainder of the week.

The district says it will update families daily on Facebook and Blackboard Connect.

Source…

Russian Hackers Suspected In Cyber Attack At Federal Agencies : NPR

/in


News Highlights: Russian Hackers Suspected In Cyber Attack At Federal Agencies : NPR.

According to reports, the US Treasury Department, which is featured here in 2019, was hacked along with the US Department of Commerce. Russia is suspected, but denies involvement. The US government has acknowledged a violation and says it is investigating to make a full assessment.

Patrick Semansky / AP

hide caption

switch caption

Patrick Semansky / AP

According to reports, the US Treasury Department, which is featured here in 2019, was hacked along with the US Department of Commerce. Russia is suspected, but denies involvement. The US government has acknowledged a violation and says it is investigating to make a full assessment.

Patrick Semansky / AP

Updated at 5:00 p.m. ET

According to US officials and media reports, Russian hackers working for the Kremlin are said to be responsible for breaches of US government computer systems in the Treasury, Commerce and Homeland Security departments, which may have taken months to be discovered.

The hackers had allegedly broken into the email systems of the government departments, but the full extent of the breach was not immediately apparent as US officials rushed to make an assessment. There are concerns that hackers may have invaded other government departments and perhaps many private companies as well.

The Department of Commerce, the National Security Council and the Department of Homeland Security all acknowledged the breach in brief statements but did not provide details.

“We can confirm that there has been a breach in one of our offices,” said the Department of Commerce.

“We have worked closely with our agencies regarding recently discovered activity on government networks,” said NSC spokesman John Ullyot.

The US government did not identify Russia or any other actor as responsible.

Reuters first reported the story on Sunday, and subsequent reports identified Russia’s foreign intelligence agency, the SVR, as the most likely culprit.

Russia’s SVR, the rough equivalent of the CIA in the US, was blamed in 2014-15 for major hacks involving unclassified email systems at the White House, the State Department and joint chiefs of staff.

Russia on…

Source…

Book review: “The Cyber Attack Survival Manual”

/in


 From PCI to HIPAA and more, security awareness is part and parcel of computer security. But for far too many organizations, they simply go through the motions of security awareness, but the end users are not necessarily better for it. Such awareness programs meet the regulatory requirements for awareness, and companies are then able to check the audit box, but that is about it. 

Ransomware creators and social engineers are fond of firms who take an approach like that, as it makes their jobs much more straightforward. But an ounce of information security awareness cure can save an organization from Bitcoins of ransom later.

In The Cyber Attack Survival Manual, authors Nick Selby and Heather Vescent have written an awareness guide that is both informative and interesting. The book provides a high-level introduction to the core areas of information security.

The book makes excellent use of infographics, key terms, stories and more. As an awareness tool, this is a book that you can give to every user and have them read at their leisure. It is engaging and immensely readable, so there is no doubt they will read it rather than have it gather dust. 

I have this book on my list of The Best Information Security Books of 2020; this is an excellent read and should also be on your reading list. 

Source…

Cisco DNA Center Bug Opens Enterprises to Remote Attack – Threatpost

/in



Cisco DNA Center Bug Opens Enterprises to Remote Attack  Threatpost

Source…