Your First Chance to

Sign Up for Our May Webinar

Artificial Intelligence: The Cyber Threat Frontier

 Wednesday, May 10 - 2 PM ET

Artificial intelligence is being increasingly used across multiple sectors, cybersecurity included. AI is also producing tools that are falling into the hands of cyber criminals looking to leverage them into larger scale cyber attacks. Learn about what challenges cybersecurity faces with the evolution of AI and cybercriminals use of AI tools. Our cyber experts will discuss the best defense strategies and how to best protect your networks against AI cyber threats in our next webinar. 

Join us for our webinar on Wednesday, May 10 at 2 PM ET - AI and the Cyber Threat Frontier or Artificial Intelligence:  The AI Cyber Threat Frontier

Cyber Tip of the Month

Cyber Protecting PSAPs and Telecom Operators

This week (April 9-15) is National Public Safety Telecommunicators Week. It honors public safety telecommunicators for their commitment, service and sacrifice as they are often the unsung heroes of public safety.

We know that public safety and PSAPs are popular targets of cyber criminals because of their importance to our society and the services they provide. Cyber criminals see them as a target that will bring them financial gain.

Here are some important steps PSAPs should take to protect their networks and help telecommunicators be prepared to serve safely.

• Employ continuous behavior-based monitoring
• Contact regular vulnerability assessments
  • TFOPA recommends every 90 days
• NIST 800-53 recommended independent monitoring
• Utilize endpoint protection

• Create a comprehensive backup strategy, including backup testing
• Create strong passwords and have a well-documented password policy
• Conduct cyber hygiene training
• Use Multi-Factor Authentication where possible
• Lock down remote access
• Keep known safe patches up to date
• Secure ports with firewalls
• Have an incident response plan

Learn more about National Public Safety Telecommunications Week and thank you to our headset heroes!

Contact SecuLore to find cybersecurity solutions including independent monitoring, vulnerability assessments cyber hygiene training, and incident response.

FBI, CISA Investigating Cyber Attack

on Puerto Rico Water Authority

A cyber attack on the Puerto Rico Aqueduct and Sewer Authority was announced on March 19, 2023. Water systems and critical infrastructures continue to be increasingly, and concerningly popular targets for cyber criminals. 

• The investigation found that customer and employee information was compromised in the incident.
• Ransomware group, Vice Society claimed credit for the attack
• Officials noted that the authority's critical infrastructure was NOT affected by the incident due to network segmentation
• The investigation is still focusing on how the attackers got access and the scope of the breach.
• Officials urged customers to change their passwords with the authority and other platforms where they may have used similar passwords

GoAnywhere Vulnerability Impacts Major Orgs

A zero day exploit in GoAnywhere's secure managed file transfer software was discovered in February. A patch was released a week later, but organizations were already impacted through the vulnerability. 

• Attacks using the vulnerability linked to Russian-speaking threat actor 'Silence' has also been linked to the distribution of Cl0p ransomware.
• The City of Toronto, Canada had limited data filed compromised, as listed on the "Silence" Tor-based leak site.
• Brands such as Saks Fifth Avenue, Protector & Gamble, Hitachi Energy, Hatch Bank, and Community Health Systems were all either leaked on Silence's Tor-site or confirmed the impact of the GoAnywhere vulnerability. 
• Risk assessments and regular patches are your best defense against vulnerabilities. 

Oldsmar, Florida Water Treatment Plan an Insider Threat?

The Oldsmar, Florida Water Treatment Plan suffered a cyber incident in Februrary 2021 attempting to tamper with levels of chemicals at the facility. The FBI investigation has revealed new details.

• The FBI told CyberScoop that they were unable to confirm the incident was initiated by a targeted cyber intrusion of Oldsmar. 
• The former city manager made a statement at a recent virtual conference supporting the same conclusion.
• Insider threats are difficult to manage, marking the importance of cybersecurity concepts such as zero trust or least access controls to only those that need access. 

Washington County, 3/20/2023

Ransomware

Hackers threatened to release the personal data of hundreds of employees in the Washington County Sherriff's Office from last month. The Sherriff's office believes the attack originated in Russia and the data accessed dates back decades that included phone numbers, social security number, and other personal information. The attack has hampered the sheriff's office for two weeks and they were given until March 20 to pay the ransom. Florida statute prohibits state agencies from paying cyber ransoms. 

If you wish to learn more or have concerns about your network please contact us

410-305-0234

info@SecuLore.com

www.SecuLore.com/contact

Do you know someone who would like to receive our emails?
Send them the link below to sign up.
https://www.seculore.com/media/newsletters-cyberalerts