This Month in Cyber Security - Peters & Associates · 2020-01-23 · © 2016 Peters & Associates,...

Helping you grow your business with

scalable IT services & solutionsfor today’s challenges & tomorrow’s vision.

© 2016 Peters & Associates, Inc. All rights reserved.

This Month in Cyber Security

June 2018

Bruce Ward, CISM

VP of Business Strategy


IT SecuritySolutionsNIST’s CyberSecurity Framework (CSF)


In the news…


IT SecuritySolutions1) MyHeritage

MyHeritagepassword hashing

https://krebsonsecurity.com/2018/06/researcher-finds-credentials-for-92-million-users-of-dna-testing-firm-myheritage/


Weekly O365 Security Check

Mailbox AuditingInbox ForwardingMailbox Retention

Office 365 DomainsOffice 365 SettingsMFA Phone Numbers

Foreign Mailbox LogonsOld / Unused MailboxesRoles assigned

SolutionDetails

https://www.peters.com/solutions-services/it-advisory-services/office365/


IT SecuritySolutions2) Patch City

v. 29.0.0.171 or earlier

A Month Without Adobe Flash Player

Adobe Zero Day Flaw Patch

Microsoft 48 vulnerabilities, 12 critical

http://krebsonsecurity.com/2015/06/a-month-without-adobe-flash-player/https://krebsonsecurity.com/2018/06/adobe-patches-zero-day-flash-flaw/https://krebsonsecurity.com/2018/06/microsoft-patch-tuesday-june-2018-edition/


Solution Details

https://www.peters.com/solutions-services/it-support-services-pulse/


3) Updates from May 2018


IT SecuritySolutions3) You are here…

Chromecast Leak

Supreme Court rules Law Enforcement needs a warrant

https://krebsonsecurity.com/2018/06/google-to-fix-location-data-leak-in-google-home-chromecast/https://krebsonsecurity.com/2018/06/supreme-court-police-need-warrant-for-mobile-location-data/


IT SecuritySolutionsGDPR Explained

Privacy PolicyIdentify Data/PII

Technical Data Assessment

Data Protection Officer (DPO)Classification / LabelsData Subject Requests (DSR)

Technical Controls AssessmentPrivacy TrainingEncryption

Detect / Respond72 Hour Notification / IRP

Activity Recording / Reporting

Uncover, Search and Make Personal Data Visible

Articles: 15,16,17,18,20,30

Place Controls Around Personal Data

Articles: 5,17,32

Protect Personal Data from Loss, Damage or Breach Articles: 5,25,32,33,34,35

Ensure Continual Adherence to GDPR

Standards Articles:

5,15,16,17,18,20,24, 35, 42, 44, 45


IT SecuritySolutions1) VPNFilter

Affected routers and NAS (network-attached storage) devices are known to include:

Linksys E1200Linksys E2500Linksys WRVS4400NMikrotik RouterOSfor Cloud Core NetgearDGN2200NetgearR6400, R7000, R8000NetgearWNR1000NetgearWNR2000QNAP TS251, TS439 Pro, OthersTP-Link R600VPN

VPNFilterWorse than We Thought

https://www.androidcentral.com/vpnfilter-malware


Solution Details

https://www.peters.com/solutions-services/it-support-services-pulse/managed-firewall/


IT SecuritySolutions4) Crypto-Currency / Crypto-Jacking)

Crypto-Jacking replacing Ransomware$31M Heist in South Korea

https://www.fortinet.com/blog/industry-trends/is-cryptojacking-replacing-ransomware-as-the-next-big-threat-.htmlhttps://www.msn.com/en-us/money/markets/hackers-nab-dollar31-million-in-cryptocurrencies-from-massive-south-korean-platform/ar-AAyUvSM?OCID=ansmsnnews11


http://www.peters.com/events

http://www.peters.com/blog/

Events, Webinars & Blogs

http://www.peters.com/eventshttp://www.peters.com/blog/


IT SecuritySolutionsRecognitions

1801 S. Meyers Road, Suite 120Oakbrook Terrace, IL 60181

(630) 832-0075

Thank you!


Bruce Ward

[email protected]
mailto:[email protected]

This Month in Cyber Security - Peters & Associates · 2020-01-23 · © 2016 Peters & Associates,...

Documents

Transcript of This Month in Cyber Security - Peters & Associates · 2020-01-23 · © 2016 Peters & Associates,...