critical infrastructure Archives - WyzGuys Cybersecurity

Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.

Colonial Pipeline CEO: Paying Ransom ‘Right Thing to Do for the Country’

The Colonial Pipeline ransomware saga continues to unfold before our eyes. This week, company CEO Joseph Blount admitted to paying $4.4 million in ransom to cybercriminals following the attack that shut down the largest fuel pipeline in the U.S. In an interview with the Wall ...

Continue Reading →

29
MAY

0

Share

CISSP, critical infrastructure, crypto-currency, Domain 8, ransomware, Weekend Update

Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.

CISA Publishes Eviction Guidance for Networks Affected by SolarWinds and AD/M365 Compromise

Original release date: May 14, 2021

CISA has released an analysis report, AR21-134A Eviction Guidance for Networks Affected by the SolarWinds and Active Directory/M365 Compromise. The report provides detailed steps for affected organizations to evict the adversary from compromised on-premises and cloud environments.

Additionally, ...

Continue Reading →

22
MAY

0

Share

account hijacking, critical infrastructure, email, ransomware, Weekend Update

DarkSide, SolarWinds

Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.

Cyber Attack Made Easy: ‘An 8th Grader Could Have Hacked’ Colonial Pipeline

Here is something you never want to hear about your company after a ransomware attack: “I mean, an eighth-grader could have hacked into that system.” Which company was this about about? Colonial Pipeline. The person speaking authored a $1.8 million information governance report for the ...

Continue Reading →

15
MAY

0

Share

critical infrastructure, Linux, ransomware, Weekend Update

crypto-currency

Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.

FBI-CISA Joint Advisory on Compromise of Microsoft Exchange Server

Original release date: March 10, 2021

CISA and the Federal Bureau of Investigation (FBI) have released a Joint Cybersecurity Advisory (CSA) to address recently disclosed vulnerabilities in Microsoft Exchange Server. CISA and FBI assess that adversaries could exploit these vulnerabilities to compromise networks, ...

Continue Reading →

13
MAR

0

Share

critical infrastructure, cyberwar, ransomware, Weekend Update

China, cyber-espionage, ICS, SCADA, Zero Trust

Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.

2-15 – ENIAC was formally dedicated at the University of Pennsylvania on February 15, 1946 and was heralded as a “Giant Brain” by the press.

Verify Your Valentine

Original release date: February 11, 2021

This Valentine’s Day, before you go looking for love in all the wrong chat rooms, CISA reminds users to be wary of internet romance ...

Continue Reading →

13
FEB

0

Share

critical infrastructure, cybersecurity, Linux, ransomware, Weekend Update, Windows 10

pen-testing

Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.

3 Positive Business Takeaways in 2020

Tired of the doom and gloom? Although 2020 has been filled with many unfortunate events like the coronavirus pandemic, there have been some positive business developments. Here are three of them.

9 data security trends IT departments should expect in 2021

Remote work will lead to more phishing attacks ...

Continue Reading →

2
JAN

0

Share

account hijacking, artificial intellegence, critical infrastructure, cybersecurity, privacy, Web Design, Weekend Update, WordPress

How Did They Get My Password?

Password theft – One of the easiest exploits for a cyber-criminal may be the one of the worst for the victim. The recent SolarWinds disaster (yes it is a disaster, not just hyperbola) began when a Russian cyber-ops group discovered the password to the SolarWinds update server was “protected” by the password SolarWinds123. This password is easily guessable and a terrible choice for a critical system such as an update ...

Continue Reading →

29
DEC

0

Share

account hijacking, Computers and Internet, critical infrastructure, cybersecurity, cyberwar, Dark Web, passwords, Phishing, social engineering

SolarWinds

Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.

[WordPress Security] Large Scale Attack Campaign Targets Database Credentials

The Wordfence Threat Intelligence Team just published details of an attack harvesting database credentials, targeting over 1 million WordPress sites. For 24 hours, attacks from this campaign accounted for 75% of all exploit attempts on plugins and themes across all of WordPress.

Both the free and paid versions ...

Continue Reading →

6
JUN

0

Share

compliance, Computers and Internet, critical infrastructure, cybersecurity, passwords, ransomware, surveillance, Weekend Update

benefits fraud, browser, DNS, firefox, ICS, password manager, SCADA, snitch site

Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.

Will working and schooling from home break the Internet?

I have been getting this question a lot lately. Quick answer, it is unlikely, so no it won’t break the Internet. But is is changing usage from downtown areas to suburbs. See the map. From Tech Republic.

Remote ...

Continue Reading →

28
MAR

0

Share

certification, critical infrastructure, education, ransomware, training, Weekend Update, Windows 10

coronavirus, COVID-19, Russian election meddling

Weekend Update

A quick Saturday digest of cybersecurity news articles from other sources.

Next week, WyzGuys Cybersecurity Blog is having its own Scam Week, and will be focusing on scams we see happening to our clients all the time. A couple are listed below.

Coronavirus warning spreads computer virus

There’s an attachment that you are “strongly recommended to read” on account of coronavirus infections in your area. Don’t open ...

Continue Reading →

7
MAR

0

Share

account hijacking, critical infrastructure, cyberwar, Google, law and policy, Weekend Update

cyber insurance, NotPetya