On Tuesday, September 25, the Port of San Diego reported a cybersecurity incident impacting port offices and some physical security aspects of Maritime Transportation Security Act regulated facilities. The local Coast Guard Captain of the Port along with other federal, state, and local partners, have been actively engaged in response efforts to ensure port safety and security. The cyber incident did not adversely impact Marine Transportation System operations.
For the benefit of our readers, the Office of Port and Facility Compliance is sharing a Federal Bureau of Investigation public service announcement titled “Cyber Actors Increasingly Exploit the Remote Desktop Protocol to Conduct Malicious Activity,” found at the following link:
October MS-ISAC/EI-ISAC National Webinar: 2018 National Cybersecurity Awareness Month
Join the Multi-State Information Sharing and Analysis Center (MS-ISAC), U.S. Department of Homeland Security (DHS) and National Cyber Security Alliance (NCSA) on the October 9 ISAC National Webinar for a deeper dive into NCSAM. Learn why securing the internet is "Our Shared Responsibility" and how you can get involved.
Malicious actors leverage public interest during natural disasters and other high profile events in order to conduct financial fraud and spread malware. The landfall of Hurricane Florence (and others) will highly likely propel the emergence of new and recycled scams involving financial fraud and malware.
Follow these guidelines when reacting to high profile events, including news associated with the disasters and solicitations for donations:
FBI Tech Tuesday: Building a Digital Defense Against Travel Scams
It is that travel-filled time of year again folks. Whether you are behind the curveball and trying to squeeze in some last minute summer vacations or completely on top of it and already planning for fall and winter trips, everyone is always on the lookout for a good deal at a great price. However, scam artists know this and will try to take advantage of it as much as they can.
If you are like me, you are constantly getting calls and emails from people telling you that you are the “lucky winner” of an all-expense paid for vacation. Although the offer is tempting, don’t fall for it! How often do you hear of people actually getting their entire trip paid for by a random stranger? Not that often, because it is yet another scam with expensive strings attached. So before you book that discounted hotel room or flight reservation, be sure to keep these travel tips from our friends at the Federal Trade Commission in mind:
In the 2011 report to Congress on Foreign Spies Stealing U.S. Economic Secrets in Cyberspace, the Office of the National Counterintelligence Executive provided a baseline assessment of the many dangers facing the U.S. research, development, and manufacturing sectors when operating in cyberspace, the pervasive threats posed by foreign intelligence services and other threat actors, and the industries and technologies most likely at risk of espionage. The 2018 report provides additional insight into the most pervasive nation-state threats, and it includes a detailed breakout of the industrial sectors and technologies judged to be of highest interest to threat actors. It also discusses several potentially disruptive threat trends that warrant close attention.
Attackers are conducting reconnaissance by phone to increase the effectiveness of their Business Email Compromise (BEC) campaigns. A high level summary of the BEC concept along with some easily actionable recommendations to combat this type of attack are included in this very short document.
“Protecting the interests of the maritime community across South Carolina”
(have you joined yet?)
A shipwreck waiting to happen. Most people see technology and ask “what does it do?”, “how does it do that?” Adversaries see technology and ask “what can I make it do?” Case in point, making navigation systems do something different than they are designed to do can be damaging.
An Adobe vulnerability actively being exploited needs to be patched or removed immediately.
Researchers have discovered a new vulnerability in technology widely used to operate critical services such as oil and electric systems that they warn hackers could exploit.
Cyberattack hits Atlanta computers 'Everyone who has done business' with city may be at risk.
In a story first reported by 11Alive, city of Atlanta computers have been cyber attacked by ransomware that has encrypted some personal and financial data. "We don't know the extent of the attack," said Atlanta Mayor Keisha Lance Bottoms in a Thursday afternoon press conference. New Atlanta COO Richard Cox said public safety, water and airport operations departments have not been affected.