Cyber Risk Update 22 MAR 2024
This is a selection of this week's events. For more news and advisories, check out our discord server. CIKR Cyber Sentinels discord server. This server is focused on cybersecurity collaboration with critical infrastructure stakeholders. (TLP Clear Only) Invite: https://discord.gg/PGz3NDKb5V
Join (ISC)2 East Bay Chapter; membership is free!
Upcoming Events
RSA Public Sector Day, May 6 11am-3pm, Hilton 333 O’Farrell St. San Francisco, CA 94102 https://carahevents.carahsoft.com/Event/Details/445617-web
On Wednesday, March 27 at 12 pm ET, CISA hosts a special CISA Live! – Celebrating Women in National Security as we close out Women’s History Month with two women making history! CISA Director Jen Easterly and Deputy Assistant to the President and Deputy National Security Advisor for Cyber and Emerging Technologies Anne Neuberger come together to highlight the achievements of women in the national security sector and share personal insights on their career paths. https://www.linkedin.com/events/cisalive-presents-women-shistor7175598844724879360/
April 11, 2024 – Member meeting: Maintaining a Strong Department of Homeland Security – Bob Kolasky, Exiger; Donald Hester Provides an Update from CISA https://isc2-eastbay-chapter.org/member-meetings/april-11-2024-member-meeting-maintaining-a-strong-department-of-homeland-security-bob-kolasky-exiger-donald-hester-provides-an-update-from-cisa/
Awareness
More than a Password https://www.cisa.gov/MFA
"Stalkerware" incidents are increasing, Kaspersky reports https://www.theregister.com/2024/03/20/stalkerware_usage_surging_despite_data/
Don't wait until it's too late—the FBI encourages businesses to create a cyber-attack contingency plan before a cybercriminal strikes. Contact your local FBI field office to connect with a cyber agent and get started on the plan: FBI offices are all about protecting your communities. https://www.fbi.gov/contact-us/field-offices
Incidents
Change hack raises bigger questions for healthcare security https://www.beckershospitalreview.com/cybersecurity/change-hack-raises-bigger-questions-for-healthcare-security.html
Sharp, UCSD affected by computer outage that briefly diverted ambulance deliveries https://www.sandiegouniontribune.com/news/health/story/2024-03-20/hospitals-affected-by-electronic-health-record-outage
DMV services disrupted nationwide by system outage (03/21) https://www.nbcnews.com/news/us-news/dmv-services-disrupted-nationwide-system-outage-rcna144496
Fujitsu Hacked – Attackers Infected The Company Computers With Malware https://gbhackers.com/fujitsu-hacked/
UnitedHealth Group Chief Executive Andrew Witty is expected to testify in Congress in about one month about details of a cyberattack at its Change Healthcare unit. Outages are still impeding revenue throughout the U.S. healthcare sector as the company works to restore systems taken offline after the Feb. 21 hack. https://subscriber.politicopro.com/article/2024/03/unitedhealth-ceo-to-testify-on-massive-hack-before-senate-00148437
At least 100 services remain offline four weeks after the UnitedHealth Group detected an intrusion in its medical claims clearinghouse. Experts say the impacts are unprecedented. https://www.cybersecuritydive.com/news/change-healthcare-drawn-out-recovery/710995/
Change Healthcare cyberattack could damage credit at small providers: Fitch https://www.cybersecuritydive.com/news/change-healthcare-cyberattack-damage-small-providers-credit-fitch-ratings/710870/
Alabama Under DDoS Cyberattack by Russian-Backed Hacktivists https://www.darkreading.com/cyberattacks-data-breaches/alabama-targeted-by-russian-backed-ddos-cyberattack
Career
Politico: Biden to nominate Michael Sulmeyer to serve as Pentagon cyber lead (03/21) https://subscriber.politicopro.com/article/2024/03/biden-nominates-michael-sulmeyer-to-serve-as-pentagon-cyber-lead-00148427
The Widening Career Opportunities for New College Graduates https://www.careersinfosecurity.com/blogs/widening-career-opportunities-for-new-college-graduates-p-3589
Guidance and Standards
ChannelE2E: SolarWinds Becomes First to Submit CISA Self-Attestation (03/21) https://www.channele2e.com/news/solarwinds-becomes-first-to-submit-cisa-self-attestation
6 CISO Takeaways From the NSA's Zero-Trust Guidance https://www.darkreading.com/cybersecurity-operations/6-ciso-takeaways-nsa-zero-trust-guidance
Nation States
CISA, calling Volt Typhoon an urgent threat, updates DDoS response guide (03/21) https://www.healthcareitnews.com/news/cisa-calling-volt-typhoon-urgent-threat-updates-ddos-response-guide
China further enhances state secrets protection https://www.globalcompliancenews.com/2024/03/21/https-insightplus-bakermckenzie-com-bm-investigations-compliance-ethics-china-further-enhances-state-secrets-protection_03062024/
Warning About Drinking Water Issued Nationwide (03/20) https://www.newsweek.com/warning-drinkin-water-issued-nationwide-iran-cyberattack-1881427
Decipher - Duo Security: U.S. Government Doubles Down on Chinese APT Warnings (03/20) https://duo.com/decipher/u-s-government-doubles-down-on-chinese-apt-warnings
North Korean Kimsuky group's attack chain blends with legitimate traffic https://www.csoonline.com/article/2066558/north-korean-kimsuky-groups-attack-chain-blends-with-legitimate-traffic.html
The U.S. Department of Homeland Security (DHS) and the European Commission’s Directorate General for Communications, Networks, Content, and Technology (DG CONNECT) announced this week a comparison of cyber incident reporting elements. The effort aims to shape cyber incident reporting requirements for the U.S. and the European Union (EU) under the NIS2 Directive. https://industrialcyber.co/news/us-eu-collaborate-on-comparative-analysis-of-cyber-incident-reporting-for-critical-infrastructure/
Governance, Risk, and Compliance
Inside Cybersecurity: Lawmakers urge CISA to issue proposed rule for incident reporting following statutory deadline for release (03/20) https://insidecybersecurity.com/daily-news/lawmakers-urge-cisa-issue-proposed-rule-incident-reporting-following-statutory-deadline
State Scoop: Cyber hygiene needs to evolve, state cybersecurity officials say (03/20) https://statescoop.com/cybersecurity-hygiene-state-government-2024-evolve
Critical Infrastructure
Inside Cybersecurity: Water sector leader identifies issues with CISA efforts to provide targeted resources, guidance (03/21) https://insidecybersecurity.com/daily-news/water-sector-leader-identifies-issues-cisa-efforts-provide-targeted-resources-guidance
Inside Cybersecurity: Federal officials emphasize role of state-level investments in cybersecurity for fulfilling national cyber strategy (03/21) https://insidecybersecurity.com/daily-news/federal-officials-emphasize-role-state-level-investments-cybersecurity-fulfilling
The National Guard is prepared to provide local and state governments with 2,000 guardsmen to aid their cybersecurity efforts, a pair of National Guard Bureau officers told a recent summit, adding that the Guard doesn't face the same workforce shortages that those organizations do. Brigadier General Teri Williams stressed the importance of preparing for the November elections. https://statescoop.com/national-guard-ready-assist-with-state-cyber-response/
Vulnerabilities
Hotel keycard hacking technique jeopardizes 3M doors https://www.wired.com/story/saflok-hotel-lock-unsaflok-hack-technique/
Ivanti Keeps Security Teams Scrambling With 2 More Vulns https://www.darkreading.com/vulnerabilities-threats/ivanti-security-teams-scrambling-2-vulns
TTP and Malware
AI adoption by hackers pushed financial scams in 2023 https://www.csoonline.com/article/2069246/ai-adoption-by-hackers-pushed-financial-scams-in-2023.html
The ransomware group didn’t just regroup quickly after a law enforcement takedown. It carried out the worst attack on U.S. infrastructure to date, according to experts. https://www.cybersecuritydive.com/news/alphv-hits-change-healthcare/709190/
Legal, & Regulatory
The U.S. Department of Transportation launched an investigation into U.S. airlines' privacy practices for handling customer data collected on apps, websites, devices used by flight attendants and passenger verification systems. https://fedscoop.com/transportation-department-to-examine-consumer-privacy-issues-with-big-airlines/
US House Passes Bill Curbing Data Sales to Foreign Foes https://www.govinfosecurity.com/us-house-passes-bill-curbing-data-sales-to-foreign-foes-a-24663
EPA floats task force to address cyberattacks on water infrastructure https://www.scmagazine.com/news/epa-floats-task-force-to-address-cyberattacks-on-water-infrastructure
Finance
Federal civilian agencies would be in line for a 10% increase in cybersecurity funds under the White House’s 2025 budget request. https://www.nextgov.com/cybersecurity/2024/03/biden-seeks-10-bump-civilian-cybersecurity-spending-fy25/395121/
AI
How to Decide If AI Should Be Part of Your Growth Strategy https://hbr.org/2024/03/how-to-decide-if-ai-should-be-part-of-your-growth-strategy
Comentarios