As the demand for experienced cyber security workers increases, our national security decreases. Some analysts believe that by as early as next year there could be a global shortage of cybersecurity professionals. With cyber-attacks becoming an increasing threat, enlisting and training a new generation of well-versed cyber security experts, as well as training current workers in the field, will aid in not only restoring the confidence of those who use the internet, but those who are just starting to experience the world wide web. Rebuilding our defenses online is the first step to a stronger, more confident nation. Some of you may be wondering what you can do to help, and the answer is simple! The National Cyber Security Alliance and the U.S. Department of Homeland Security both urge parents, teachers, and employers to motivate potential talent to pursue a career in cyber security. A cyber security professional needs an understanding that goes deeper than just math and technology. They need to be curious, passionate about learning, have a strong ethic and moral compass and be aware of the risks that come with the job. While all these ideas play an important role, at the end of the day, a profession in cyber security means having a passion in keeping our online world more secure and safer for all. To those who are worried about a boring job, fret not, for you will be at the front lines. While cyber security experts are behind the scenes, the roles they play impact our digital lives in big ways. Cyber security experts tackle catastrophic issues before they can detonate, causing massive issues for the internet. This profession is dedicated to protecting those online, keeping them more secure and safer from any threats they may face. A profession in cyber security builds important team-based skills and provides an environment for one to continue to learn and improve in skill. If you believe your student or child to be interesting in cyber security, there are steps you can take to aid them! You could volunteer at school or set up community workshops that help to teach children and adults about online safety and a career in cyber security. Try exposing students or your children to the opportunities in the field of cyber security by hosting an open house at your company to talk about what your cyber security department does. Inspire children to learn about cyber security by mentoring a team in a cyber challenge or hosting events and after school programs. Work with schools or community organizations to create an internship program for hands-on learning. For parents, become knowledgeable about the educational steps to a career in cyber security and about organizations that host events for cyber security. For those in college searching for a job in cyber security, get credentials. Four out of five cyber security jobs require a college degree. Do volunteer work and internships so that you can become more experienced in the field itself. Offer help to you IT professors at college or employer to gain more experience. Read about the latest advancements and breaches regarding cyber security. Pay attention to how these breaches occur and how they were fixed. If you are interested but not sure if cyber security is right for you, take a look at the National Initiative for Cyber security Careers and Studies (NICCS). NICCS has career resources for learning more about jobs in the field, as well as guides for learning about how to join a cyber security team! At Hammett Technologies we put your online security as a top priority. We treat your network as our own, with regular maintenance and updates to keep your company’s data secure. Be with a team you can trust, become a Hammett Technologies Partner today! Still curious as to what we can do to help your company grow? Click here to find out more!
Windows and Linux users are once again the targets of a new string of ransomware: Tycoon. First discovered in 2019, the new strain of ransomware was created to attack educational institutes and software industries. Once inside, Tycoon proceeds to encrypt file servers, demanding a ransom for decryption. What makes this ransomware different from its predecessors is its use of code to help disguise its presence on networks. Uncovering Tycoon Ransomware Discovered by researchers and security analysts at Blackberry and KPMG, Tycoon is quite unusual compared to other ransomware. Utilizing Java, Tycoon deploys using Java Runtime Environment (JRE) and compiles itself into a Java image file (Jimage) to hide its malicious payload. What Tycoon Does The ransomware infiltrates a network using unsecured internet-facing remote desktop protocol (RDP) servers. When the system is compromised, antivirus solutions are rendered useless due to Tycoon’s ability to elevate its privileges and disable them. Once executed, Tycoon ransomware encrypts all files connected with the network, adding filename extensions such as .redrum, .grinch, and .thanos. Like other ransomware, once all files are encrypted, users are prompted to pay a ransom (in the form of bitcoin) to obtain their data back safely. Staying Safe RDP is a common way for many malicious attack campaigns to infiltrate networks. Ports should only face outward towards the internet for extreme cases, and users accessing these ports should have strong, unique passwords. Regularly updating your system’s security is another good way to ensure your network remains safe. Regularly backing up your network and storing those backups offsite or off the network is another crucial step to take. Should the worst case scenario happen, a backup will save you time and money. Worried your network may be compromised or at risk to attackers? Wondering when the last time you backed up your network was? Hammett Technologies can take care of all your business’s technological needs without the headache. Give us a call and secure your data today!
As technology continues to advance, so do those who aim to use it to exploit others. According to Accenture, when a business suffers a cybersecurity attack, an estimated $2.4 million is spent on recovery, and it takes an estimated 50 days to recover from the attack entirely. On a global scale, the average business can expect to spend on recovery is estimated to be as high as $3.86 million, with another attack within 24 hours with a 27.9% chance (via 2018 Ponemon Report). It is essential that businesses understand this threat, and that investing in preventative measures, such as automation, is important to maintaining a business’s security. What is a Data Breach? According to the 2018 Cost of a Data Breach Study, to classify an event as a “data breach” an individual’s medical record, financial record, and/or debit card information must be placed at risk. This type of information can become exposed due to malicious or criminal attack, system glitch, and even human error. How Does a Business Avoid Data Breaches? In order to prevent a data breach from occurring, a business must invest in a strong cybersecurity team. With the support of a robust cybersecurity team, a business has a better chance of staying ahead of malicious hackers. Furthermore, extensive pressure testing can also aid in prevention. Pressure testing a businesses network environment can reveal vulnerabilities, as well as aid in innovation, keeping your cybersecurity ahead of the attackers. However, one of the most important defenses a business can invest in is automation. What is Automation and How Can It Improve Cyber Defense? When it comes to cybersecurity, automation is your best defender. According to 2019 Study on the Cyber Resilient Organization, automation, in the cybersecurity field, refers to investing and enabling in cybersecurity technologies that assist or replace human intervention in the identification and containment of cyber exploits or breaches. Furthermore, for these technologies to function correctly and efficiently, artificial intelligence and machine learning, must be appropriately implemented. Automation creates a symbiotic relationship with businesses cyber resilience. It reduced the chances a business has of encountering a data breach, as well as the frequency of them occurring. Investing in automation allows for a business to feel more confident in its ability to track, prevent, and contain potential cybersecurity incident. However, while automation does remove humans from the identification and containment procedure, it does not mean that cybersecurity professionals are irrelevant. A business should keep a full staffed cybersecurity team to assist in training, as well as regular maintenance of the automation processes. Furthermore, a fully staffed cybersecurity team can develop a Computer Security Incident Response Plan (CSIRP), which significantly assists in detection and containment. Automation is a necessary part of a company this wished to keep their client’s information save and save money. According to the 2018 Cost of a Data Breach Study, on average, the losses of a company that has fully and effectively implemented automation to their cybersecurity defense, are $2.88 million, while a company that has decided to skip on automation suffers $4.43 million in losses. Automation is an essential tool for any business looking to improve its cybersecurity and cyber resilience. What Other Steps Should a Business Take to Continually Improve its Cyber Resilience? Automation is a crucial component to any businesses cybersecurity detail, but businesses cannot overlook other key personnel and details either. Security intelligence systems can save a company as much as $3.7 million. Companies that take full advantage of encryption and effectively use it can save as much as $1.4 million annually. Properly implementation of a firewall can prevent 2.5 million in losses yearly as well. Perhaps the most often overlooked factor is maintaining a sufficient budget for cybersecurity, which can save a company $2.8 million annually when appropriately maintained. As stated earlier, keeping a fully staffed cybersecurity team crucial to maintaining the network, leading to $2.1 million in savings for the company; however, no team is without its leader. Hiring a Chief Information Security Officer (CISO) can further improve security, as well as save a company $2 million yearly. Lastly, and an added measure as to what automation cannot accomplish is proper training and cybersecurity awareness meetings. Training and informing employees on cybersecurity not only helps to prevent human error, but it also saves a company $1.5 million every year. Automation is crucial, but implementing other cybersecurity personnel and details in equally important in maintaining a proper network. As technology continues to progress, the threats do as well. Therefore, it is up to businesses and cybersecurity teams to implement the proper tools necessary to defend against attacks that can wreak havoc and cause data breaches. At Hammett Technologies we understand the importance and can help evaluate and develop a plan to help train employees and prevent data breaches, ensuring your company’s data remains secure.
If you have an Nvidia graphics card, it is within your best interest to make sure your drivers are up to date. On May 9, Nvidia released a statement stating that they have patched security holes within their display drivers that could have led to a denial of service attacks, or could leave your personal information exposed for hackers. Drive update 430.64 was released on May 9 and remedies the security holes outlined below. Vulnerability CVE-2019-5675 is an issue within the kernel of the GPU, which is used to handle only trusted windows files. This issue can be exploited and used to launch denial of service attacks (DoS) and allow hackers administrative privileges over your system. Lastly, vulnerability CVE-2019-5677, another issue within the kernel, can lead to denial of service attacks (DoS). It is important that you update your cards immediately to avoid falling victim to any of these vulnerabilities. The newest driver update, released May 9, 2019, corrects each of the vulnerabilities listed above.