Cyber Risk Update 22 MAR 2024

This is a selection of this week's events. For more news and advisories, check out our discord server. CIKR Cyber Sentinels discord server. This server is focused on cybersecurity collaboration with critical infrastructure stakeholders. (TLP Clear Only) Invite: https://discord.gg/PGz3NDKb5V

Join (ISC)2 East Bay Chapter; membership is free!

https://isc2-eastbay-chapter.org/membership/

Upcoming Events

RSA Public Sector Day, May 6 11am-3pm, Hilton 333 O’Farrell St. San Francisco, CA 94102 https://carahevents.carahsoft.com/Event/Details/445617-web
On Wednesday, March 27 at 12 pm ET, CISA hosts a special CISA Live! – Celebrating Women in National Security as we close out Women’s History Month with two women making history! CISA Director Jen Easterly and Deputy Assistant to the President and Deputy National Security Advisor for Cyber and Emerging Technologies Anne Neuberger come together to highlight the achievements of women in the national security sector and share personal insights on their career paths. https://www.linkedin.com/events/cisalive-presents-women-shistor7175598844724879360/
April 11, 2024 – Member meeting: Maintaining a Strong Department of Homeland Security – Bob Kolasky, Exiger; Donald Hester Provides an Update from CISA https://isc2-eastbay-chapter.org/member-meetings/april-11-2024-member-meeting-maintaining-a-strong-department-of-homeland-security-bob-kolasky-exiger-donald-hester-provides-an-update-from-cisa/

Awareness

More than a Password https://www.cisa.gov/MFA
"Stalkerware" incidents are increasing, Kaspersky reports https://www.theregister.com/2024/03/20/stalkerware_usage_surging_despite_data/

Don't wait until it's too late—the FBI encourages businesses to create a cyber-attack contingency plan before a cybercriminal strikes. Contact your local FBI field office to connect with a cyber agent and get started on the plan: FBI offices are all about protecting your communities. https://www.fbi.gov/contact-us/field-offices

Incidents

Change hack raises bigger questions for healthcare security https://www.beckershospitalreview.com/cybersecurity/change-hack-raises-bigger-questions-for-healthcare-security.html
Sharp, UCSD affected by computer outage that briefly diverted ambulance deliveries https://www.sandiegouniontribune.com/news/health/story/2024-03-20/hospitals-affected-by-electronic-health-record-outage
DMV services disrupted nationwide by system outage (03/21) https://www.nbcnews.com/news/us-news/dmv-services-disrupted-nationwide-system-outage-rcna144496
Fujitsu Hacked – Attackers Infected The Company Computers With Malware https://gbhackers.com/fujitsu-hacked/
UnitedHealth Group Chief Executive Andrew Witty is expected to testify in Congress in about one month about details of a cyberattack at its Change Healthcare unit. Outages are still impeding revenue throughout the U.S. healthcare sector as the company works to restore systems taken offline after the Feb. 21 hack. https://subscriber.politicopro.com/article/2024/03/unitedhealth-ceo-to-testify-on-massive-hack-before-senate-00148437
At least 100 services remain offline four weeks after the UnitedHealth Group detected an intrusion in its medical claims clearinghouse. Experts say the impacts are unprecedented. https://www.cybersecuritydive.com/news/change-healthcare-drawn-out-recovery/710995/
Change Healthcare cyberattack could damage credit at small providers: Fitch https://www.cybersecuritydive.com/news/change-healthcare-cyberattack-damage-small-providers-credit-fitch-ratings/710870/
Alabama Under DDoS Cyberattack by Russian-Backed Hacktivists https://www.darkreading.com/cyberattacks-data-breaches/alabama-targeted-by-russian-backed-ddos-cyberattack

The U.S. Department of Homeland Security (DHS) and the European Commission’s Directorate General for Communications, Networks, Content, and Technology (DG CONNECT) announced this week a comparison of cyber incident reporting elements. The effort aims to shape cyber incident reporting requirements for the U.S. and the European Union (EU) under the NIS2 Directive. https://industrialcyber.co/news/us-eu-collaborate-on-comparative-analysis-of-cyber-incident-reporting-for-critical-infrastructure/

Governance, Risk, and Compliance

Inside Cybersecurity: Lawmakers urge CISA to issue proposed rule for incident reporting following statutory deadline for release (03/20) https://insidecybersecurity.com/daily-news/lawmakers-urge-cisa-issue-proposed-rule-incident-reporting-following-statutory-deadline
State Scoop: Cyber hygiene needs to evolve, state cybersecurity officials say (03/20) https://statescoop.com/cybersecurity-hygiene-state-government-2024-evolve

Critical Infrastructure

Inside Cybersecurity: Water sector leader identifies issues with CISA efforts to provide targeted resources, guidance (03/21) https://insidecybersecurity.com/daily-news/water-sector-leader-identifies-issues-cisa-efforts-provide-targeted-resources-guidance
Inside Cybersecurity: Federal officials emphasize role of state-level investments in cybersecurity for fulfilling national cyber strategy (03/21) https://insidecybersecurity.com/daily-news/federal-officials-emphasize-role-state-level-investments-cybersecurity-fulfilling
The National Guard is prepared to provide local and state governments with 2,000 guardsmen to aid their cybersecurity efforts, a pair of National Guard Bureau officers told a recent summit, adding that the Guard doesn't face the same workforce shortages that those organizations do. Brigadier General Teri Williams stressed the importance of preparing for the November elections. https://statescoop.com/national-guard-ready-assist-with-state-cyber-response/