Cybercram

How to start an information security career ———————————— #cybersecurity #infosec #career ———————————— CompTIA Security+ certification: https://mbsy.co/3rzn7l

Start an information security career ———————————— #cybersecurity #infosec #career ———————————— CompTIA Security+ certification: https://mbsy.co/3rzn7l

This is a discussion about the ransomware attack that halted operations at several JBS SA meat packing plants. I also discuss what you can do to prevent being a ransomware victim and what you can do to mitigate the effects of a ransomware infection. ———————————— #infosec #cybersecurity #ransomware ———————————— Meat Processing Grinds to Halt After 'Cybersecurity Attack' https://www.databreachtoday.com/meat-processing-grinds-to-halt-after-cybersecurity-attack-a-16773 Cyberattack Forces Meat Producer to Shut Down Operations in U.S., Australia https://threatpost.com/cyberattack-meat-producer-shut-down/166560/ Meat Buyers Scramble After Cyberattack Hobbles JBS https://www.wsj.com/articles/meatpacker-jbs-hit-by-cyberattack-affecting-north-american-australian-operations-11622548864 Meat Supplies Tighten as Cyberattack on JBS Snarls Food Chain https://www.wsj.com/articles/jbs-meat-plants-face-slow-restart-after-cyberattack-11622633982 JBS Paid $11 Million to Resolve Ransomware Attack https://www.wsj.com/articles/jbs-paid-11-million-to-resolve-ransomware-attack-11623280781 Ransomware Attack Affecting Likely Thousands of Targets Drags On https://www.wsj.com/articles/ransomware-group-behind-meat-supply-attack-threatens-hundreds-of-new-targets-11625285071

This is a summary of the ongoing ransomware epidemic, including how major businesses have been affected. Also, I discuss what you can do to respond to a ransomware infection and how you can prevent being infected and mitigate the effects of an infection. ———————————— #infosec #cybersecurity #ransomware ———————————— Ransomware Group’s Attack Likely Hits Thousands of New Targets https://www.wsj.com/articles/ransomware-group-behind-meat-supply-attack-threatens-hundreds-of-new-targets-11625285071 Kaseya VSA Supply-Chain Ransomware Attack https://us-cert.cisa.gov/ncas/current-activity/2021/07/02/kaseya-vsa-supply-chain-ransomware-attack White House Urges Businesses: Improve Ransomware Defenses https://www.databreachtoday.com/white-house-urges-businesses-improve-ransomware-defenses-a-16801 UF Health Florida hospitals back to pen and paper after cyberattack https://www.bleepingcomputer.com/news/security/uf-health-florida-hospitals-back-to-pen-and-paper-after-cyberattack/ REvil Ransomware Gang Spill Details on US Attacks https://threatpost.com/revil-spill-details-us-attacks/166669/ The realities of ransomware: Five signs you’re about to be attacked https://news.sophos.com/en-us/2020/08/04/the-realities-of-ransomware-five-signs-youre-about-to-be-attacked/ CISA-FBI Guidance for MSPs and their Customers Affected by the Kaseya VSA Supply-Chain Ransomware Attack https://us-cert.cisa.gov/ncas/current-activity/2021/07/04/cisa-fbi-guidance-msps-and-their-customers-affected-kaseya-vsa Kaseya Was Working on Patches Before Ransomware Attack https://www.databreachtoday.com/kaseya-was-working-on-patches-before-ransomware-attack-a-16987 SolarWinds hackers could have been waylaid by simple countermeasure -US officials https://www.reuters.com/technology/solarwinds-hackers-could-have-been-waylaid-by-simple-countermeasure-us-officials-2021-06-21/

Ranking cybersecurity certifications Information about the CISSP from ISC2, the organization that creates exam study guides and the exam: https://www.isc2.org/Certifications/CISSP Information about GIAC certifications: https://www.giac.org/ Security certification ranking ———————————— #cybercram #infosec #certifications ————————————

Preventing a ransomware infection ———————————— #cybercram #cybersecurity #ransomware ————————————

Cybersecurity interview questions and tips ———————————— #cybercram #cybersecurity #interview ————————————

Analyzing a water treatment plant hack ———————————— #infosec #cybersecurity #hack ————————————

This is a starting place for learning about cybersecurity and information security. ———————————— #infosec #cybersecurity #beginners ———————————— Cybersecurity for beginners

Black Hat and DEF CON review This is a review of the Black Hat USA and DEF CON cybersecurity conferences held annually in Las Vegas. ———————————— #infosec #cybersecurity #defcon ———————————— Black Hat https://www.blackhat.com DEF CON https://defcon.org

Cybersecurity Analyst Training In this video I provide guidance for becoming a cybersecurity analyst or becoming a better cybersecurity analyst. I also give you direction on how to prepare yourself for growing your career in the future. ———————————— #infosec #cybersecurity #analyst ————————————

Cybersecurity at Home In this video I give you five simple ways to keep your home computers and devices secure. ———————————— #infosec #cybersecurity #informationsecurity ————————————

In this video I show you the steps to update your Windows 10 computer. How to update the Windows 10 operating system ———————————— #cybercram #cybersecurity #windows10 ————————————

This is a summary and lessons learned regarding the MS Exchange hack in early 2021 by the cyber gang Hafnium. ---------------------------- #infosec #hack #cybersecurity ---------------------------- Microsoft: Chinese Cyberspies Used 4 Exchange Server Flaws to Plunder Emails https://krebsonsecurity.com/2021/03/microsoft-chinese-cyberspies-used-4-exchange-server-flaws-to-plunder-emails/ Warning the World of a Ticking Time Bomb https://krebsonsecurity.com/2021/03/warning-the-world-of-a-ticking-time-bomb/ At least 10 APT hacking groups have exploited Exchange Server bugs, ESET warns https://www.cyberscoop.com/microsoft-exchange-china-exploitation-eset/ Microsoft IOC Detection Tool for Exchange Server Vulnerabilities https://us-cert.cisa.gov/ncas/current-activity/2021/03/06/microsoft-ioc-detection-tool-exchange-server-vulnerabilities Scan Exchange log files for indicators of compromise https://www.microsoft.com/security/blog/2021/03/02/hafnium-targeting-exchange-servers/#scan-log Defending Exchange servers under attack https://www.microsoft.com/security/blog/2020/06/24/defending-exchange-servers-under-attack/ Detection and Response to Exploitation of Microsoft Exchange Zero-Day Vulnerabilities https://www.fireeye.com/blog/threat-research/2021/03/detection-response-to-exploitation-of-microsoft-exchange-zero-day-vulnerabilities.html

SolarWinds hack analysis and lessons learned ———————————— Center for Internet Security (CIS) SolarWinds resources: https://www.cisecurity.org/solarwinds/ ———————————— #cybercram #solarwinds #hack ————————————

Oil and Gas Pipeline Hack In this video I discuss the recent ransomware infection that affected Colonial Pipeline and resulted in gasoline shortages on the east coast in the United States. I provide you with my analysis and what you can do to prevent a ransomware infection from shutting down your business or home network. #cybersecurity #infosec #colonial U.S. Pipeline Cyberattack Forces Closure Saturday, May 8, 2021 https://www.wsj.com/articles/cyberattack-forces-closure-of-largest-u-s-refined-fuel-pipeline-11620479737 U.S. Pipeline Shutdown Exposes Cyber Threat to Energy Sector Sunday, May 9, 2021 https://www.wsj.com/articles/u-s-pipeline-shutdown-exposes-cyber-threat-to-energy-sector-11620574464 Colonial Pipeline Shutdown Threatens to Magnify Gasoline-Price Surge Monday, May 10, 2021 https://www.wsj.com/articles/as-colonial-pipeline-shutdown-drags-on-after-hack-eyes-are-on-gasoline-prices-11620660258 Colonial Pipeline Starts Recovery From Ransomware Monday, May 10, 2021 https://www.databreachtoday.com/colonial-pipeline-starts-recovery-from-ransomware-a-16550 U.S. Blames Criminal Group in Colonial Pipeline Hack Monday, May 10, 2021 https://www.wsj.com/articles/fbi-suspects-criminal-group-with-ties-to-eastern-europe-in-pipeline-hack-11620664720 Pipeline Shutdown Has East Coast Drivers Making a Run on Gas Tuesday, May 11, 2021 https://www.wsj.com/articles/east-coast-drivers-make-run-on-gas-stations-following-colonial-pipeline-shutdown-11620748473 DarkSide: New targeted ransomware demands million dollar ransoms Tuesday, May 11, 2021 https://www.bleepingcomputer.com/news/security/darkside-new-targeted-ransomware-demands-million-dollar-ransoms/ FBI: DarkSide Ransomware Used in Colonial Pipeline Attack Tuesday, May 11, 2021 https://www.databreachtoday.com/fbi-darkside-ransomware-used-in-colonial-pipeline-attack-a-16555 Joint CISA-FBI Cybersecurity Advisory on DarkSide Ransomware Tuesday, May 11, 2021 https://us-cert.cisa.gov/ncas/current-activity/2021/05/11/joint-cisa-fbi-cybersecurity-advisory-darkside-ransomware Alert (AA21-131A) DarkSide Ransomware: Best Practices for Preventing Business Disruption from Ransomware Attacks Tuesday, May 11, 2021 https://us-cert.cisa.gov/ncas/alerts/aa21-131a Beyond Colonial Pipeline, Ransomware Cyberattacks Are a Growing Threat Tuesday, May 11, 2021 https://www.wsj.com/articles/colonial-pipeline-hack-shows-ransomware-emergence-as-industrial-scale-threat-11620749675 When the screens went black: How NotPetya taught Maersk to rely on resilience – not luck – to mitigate future cyber-attacks https://portswigger.net/daily-swig/when-the-screens-went-black-how-notpetya-taught-maersk-to-rely-on-resilience-not-luck-to-mitigate-future-cyber-attacks U.S. Gas Prices Hit $3 a Gallon as Shortage Sets in Amid Colonial Pipeline Shutdown Wednesday, May 12, 2021 https://www.wsj.com/articles/u-s-gas-prices-hit-3-a-gallon-as-shortage-sets-in-amid-colonial-pipeline-shutdown-11620832180 CISA Awaits Technical Details on Colonial Pipeline Attack Wednesday, May 12, 2021 https://www.databreachtoday.com/cisa-awaits-technical-details-on-colonial-pipeline-attack-a-16565 Colonial Pipeline Restarts Operations After Cyberattack Wednesday, May 12, 2021 https://www.wsj.com/articles/colonial-pipeline-restarts-operations-after-cyberattack-11620855846

SolarWinds Hack Explained ———————————— #infosec #cybersecurity #solarwinds ———————————— Cybersecurity and Infrastructure Security Agency (CISA) Remediating Networks Affected by the SolarWinds and Active Directory/M365 Compromise https://us-cert.cisa.gov/remediating-apt-compromised-networks Guidance on Remediating Networks Affected by the SolarWinds and Active Directory/M365 Compromise https://us-cert.cisa.gov/ncas/current-activity/2021/03/09/guidance-remediating-networks-affected-solarwinds-and-active Original release date: March 09, 2021 Detecting Post-Compromise Threat Activity in Microsoft Cloud Environmentshttps://us-cert.cisa.gov/ncas/alerts/aa21-008a Advanced Persistent Threat Compromise of Government Agencies, Critical Infrastructure, and Private Sector Organizations https://us-cert.cisa.gov/ncas/alerts/aa20-352a