Cyber News

 

July 2021:

COORDINATED ACTION CUTS OFF ACCESS TO VPN SERVICE USED BY RANSOMWARE GROUPS - Law enforcement and judicial authorities in Europe, the U.S., and Canada seized the web domains and server infrastructure of DoubleVPN. This is a virtual private network (VPN) service which provided a safe haven for cybercriminals to attack their victims. 

STATEMENT FROM CISA ACTING DIRECTOR WALES ON EXECUTIVE ORDER TO IMPROVE THE NATION’S CYBERSECURITY AND PROTECT FEDERAL NETWORKS - After President Biden signed an executive order to improve the nation’s cybersecurity and protect federal government networks, Brandon Wales, Acting Director if the Cybersecurity and Infrastructure Security Agency (CISA) released a statement about the importance of this step forward after the recent ransomware attacks on the Colonial Pipeline.

CISA AND CYBER.ORG PARTNER TO DELIVER CYBER SAFETY VIDEO SERIES - The Cybersecurity and Infrastructure Security Agency (CISA) and CYBER.ORG jointly announce a cyber safety video series to help those learning or working online take proactive steps to protect themselves and their business. The video series currently includes five videos that provide easy to understand cybersecurity concepts which include tips to avoid becoming a victim of a ransomware attack.

CISA LAUNCHES CAMPAIGN TO REDUCE THE RISK OF RANSOMWARE - The Cybersecurity and Infrastructure Security Agency (CISA) announces the Reduce the Risk of Ransomware Campaign, a focused, coordinated, and sustained effort to encourage public and private sector organizations to implement best practices, tools and resources that can help them mitigate this cybersecurity risk and threat.

CISA AND MS-ISAC RELEASE JOINT RANSOMWARE GUIDE - The Cybersecurity and Infrastructure Security Agency (CISA) and Multi-State Information Sharing and Analysis Center (MS-ISAC) are releasing a joint Ransomware Guide meant to be a one-stop resource for stakeholders on how to be proactive and prevent these attacks from happening and also a detailed approach on how to respond to an attack and best resolve the cyber incident.

Chief Information Security Officer Dennis Leber Honored by National Security Leaders (UTHSC) - Dennis E. Leber, PhD, assistant vice chancellor and chief information security officer for Information Technology Services at UTHSC, has been named to the inaugural Top 100 CISOs (C100) listing by CISO Connect. Honorees were selected among distinguished security leaders across the U.S. by the CISO Board of Judges. “This award means a lot to me,” Dr. Leber said. “The selection committee comprises peer CISOs from top organizations and being recognized by your peers holds tremendous merit. It is a true honor, and I feel like I stand among giants.”

Homeland Security orders pipeline operators to strengthen cybersecurity to protect fuel supply chains (Illinois News Today) - On Tuesday, the Department of Homeland Security (DHS) issued new cybersecurity requirements to fuel pipeline owners and operators in response to a ransomware attack on the colonial pipeline. In a statement on June 20, the DHS said, “Implementing a number of urgently needed protections against cyber intrusions for owners and operators of key TSA-designated pipelines that transport dangerous liquids and natural gas. Announced the issuance of a security directive requesting.” Pipeline cybersecurity has gained a lot of attention after the May ransomware attack, which shut down the Colonial pipeline for a few days. The pipeline supplies about 45% of the fuel to the east coast, Gas station fuel shortage It has been reported in many states, including Virginia, North Carolina, Florida, South Carolina, Tennessee, and Alabama.

Rural site in Meigs County taking shape as TVA's new power center (Chattanooga Times-Free Press) - On a rolling meadow next to a forest of trees in the southern tip of Meigs County, America's biggest public power utility is building the brains for what it is calling the electricity grid for tomorrow. The Tennessee Valley Authority is spending $300 million to build a new and bigger power control center at this rural location to replace its system operations facility now housed in the basement of TVA's Missionary Ridge building in downtown Chattanooga.

Tennessee Guard joins national cybersecurity exercise (Air Force Cyber) NASHVILLE, Tenn. – Members of the Tennessee National Guard are participating in the nationwide cybersecurity exercise, Cyber Shield, July 10-24 at Joint Force Headquarters in Nashville. The annual exercise is designed to increase response capabilities and preparedness by simulating cyberattacks on infrastructure elements in the United States. Tennessee’s Defense Cyber Operations Element, 119th Cyber Operations Squadron, and Detachment 2, 175th Cyber Protection Team, are testing themselves as a team during the two-week exercise. “Participating in a training event like this is a real benefit to all of us,” said Maj. Ryan Henry, deputy chief of the Defense Cyber Operations Element. “Over the course of these two weeks, we will be graded and we will get a real idea of where we stand so that we can prepare our strategic training plan going forward.”

Popular cybersecurity summer camp underway in Decatur (WAFF Huntsville, AL) - Dozens of students from the Tennessee Valley are spending time this week at Calhoun Community College in Decatur. They’re participating in the school’s first week-long cybersecurity summer camp. Monday kicked off two weeklong summer camps at Calhoun Community College in Decatur. WAFF got to check it out and learn about why it is so successful and why so many kids have signed up. The camp has been booked for several weeks. “Really, the primary goal of this camp is to expose kids who might not have a lot of exposure to it otherwise. For a lot of kids, they are not aware of these opportunities,” said Dean of Business and Communications Systems James Payne.

Connecticut Offers Incentives for Businesses, MSSPs to Install Cybersecurity Controls (MSSP Alert) - Connecticut has signed into law a new bill that bars state courts from penalizing businesses hit by a data breach if the organization has previously implemented certain cybersecurity controls. The Connecticut measure, aptly named “An Act Incentivizing the Adoption of Cybersecurity Standards for Businesses,” aims to reward companies for creating and maintaining a written cybersecurity program with administrative, technical and physical safeguards to protect both personal information and the businesses’ confidential data. This is the latest in a growing list of state- and national-level legislation that may impact how MSSPs safeguard customer data. At the national level, the big item to watch is President Biden’s executive order on cybersecurity, which specifically mentions IT service providers more than a dozen times.

Microsoft Exchange hack caused by China, US and allies say (AP) - The Biden administration and Western allies formally blamed China on Monday for a massive hack of Microsoft Exchange email server software and accused Beijing of working with criminal hackers in ransomware attacks and other cyber operations. The announcements, though not accompanied by sanctions against the Chinese government, were intended as a forceful condemnation of activities a senior Biden administration official described as part of a “pattern of irresponsible behavior in cyberspace.” They highlighted the ongoing threat from Chinese government hackers even as the administration remains consumed with trying to curb ransomware attacks from Russia-based syndicates that have targeted critical infrastructure.

US, allies accuse China of global cyber hacking campaign (Reuters) - The United States and a coalition of allies accused China on Monday of a global cyber hacking campaign that employed contract hackers, specifically attributing a large Microsoft attack disclosed earlier this year to actors working on Beijing's behalf. Opening a new area of tensions with China, the United States is joined by NATO, the European Union, Britain, Australia, Japan, New Zealand and Canada to level the allegations. "The United States and countries around the world are holding the People’s Republic of China accountable for its pattern of irresponsible, disruptive, and destabilizing behavior in cyberspace, which poses a major threat to our economic and national security," U.S. Secretary of State Anthony Blinken said in a statement on Monday.

Biden Administration Blames Hackers Tied to China for Microsoft Cyberattack Spree (WSJ) - The Biden administration Monday publicly blamed hackers affiliated with China’s main intelligence service for a far-reaching cyberattack on Microsoft Corp. email software this year, part of a global effort to condemn Beijing’s malicious cyber activities. In addition, four Chinese nationals, including three intelligence officers, were indicted over separate hacking activity. The U.S. government has “high confidence” that hackers tied to the Ministry of State Security, or MSS, carried out the unusually indiscriminate hack of Microsoft Exchange Server software that emerged in March, senior officials said.

Tennessee firms hit hard by surge in cyber-crime during pandemic digital upheaval - Leading teledentistry startup SmileDirectClub was ramping up post-pandemic business and moving forward with worldwide expansion plans when a sudden attack shut down its computer systems.

StopRansomware.gov a new website was launched to help organizations reduce their risk of ransomware, and is the new ransomware homepage for federal government agencies to pool resources that can give businesses and organizations of all sizes the opportunity to better protect their networks. The website will also highlight the latest ransomware-related alerts from these agencies.

Harmonizing Government IT Will Take More Than Money - A U.S. House hearing last week heard testimony from experts who underlined the disconnect between federal, state and local IT as well as how leadership can stall efforts to improve digital user experience and cybersecurity. READ MORE

NIST Defines ‘Critical Software,’ Implications to Follow - The National Institute of Standards and Technology broke with tradition to define critical software based on what it does, not how it’s used by agencies. The vendor community should take notes. READ MORE

Cybersecurity Game Aims to Train 25K Specialists by 2025 - The National Cyber Scholarship Foundation is aggressively expanding its CyberStart game intiatives to entice undiscovered talent toward cybersecurity positions and address top-tier skill gaps. READ MORE

NIST Proposal Aims to Reduce Bias in Artificial Intelligence - The National Institute of Standards and Technology recently released a proposal regarding the risk of bias in the use of artificial intelligence to help reduce it. The agency is seeking comments from the tech community. READ MORE