This Month in Cyber Security: October 2020 (1:55)

by | Oct 27, 2020 | Security

New cyber threats emerge on a weekly basis but are all of them relevant to your organization? Each month, our security team hosts a 30-minute webinar to discuss the latest threats, breakdown their applicability to small and medium-sized organizations, and cost-effective steps to mitigate risk. In this webinar, we discussed what’s new for the month of November, the risks that come with working from home, and ransomware updates.

September was Emergency Preparedness Month, October is Security Awareness Month, what’s in store for November?  After learning how to protect your network, take advantage of all the lessons learned, and let your Incident Response Plan (IRP) start taking form. We covered the key points of a successful IRP, and how you can start building yours today. Learn how to build your IRP here.

A slew of new vulnerabilities remind us of the challenges of supporting Work from Home technology:

  • Critical VMware updates released October 20th –  Customers running VMware as their hypervisor have a series of critical security patches (CVE-2020-3992) to apply to prevent remote code execution.
  • 800,000 Sonicall VPN’s are exploitable – VPN infrastructure is critical to remote work. Patch before you’re impacted.
  • HPE Aruba switches and IAPs have a potential kernel vulnerability – This scores “high” (7.5) on the risk scale. Check to see if you’re impacted.
  • Microsoft Domain Controllers had patches issued – These addressed Netlogon issues (CVE-2020-1472) which were identified in August 2020. Patch now before it can be exploited against your organization.

Ransomware updates – We reviewed the latest in ransomware, including Microsoft’s Trickbot trip-up, this month’s OFAC ruling, and BlackBaud issues. In each case, the victim of these attacks waited too long and relied too heavily on cyber insurance to make the right choices. When waiting on others to make a decision in a ransomware attack, this can lock up resources for longer periods of time and halt business activity. Here are 8 simple areas you can check to make sure your practices are on the right track:

  1. Application Control
  2. Patch Applications
  3. Microsoft Office Macro Settings
  4. User Application Hardening
  5. Restrict Admin Privileges
  6. Patch Operating Systems
  7. MFA
  8. Daily Backups

If you have questions about how you can better protect your network, give us a call at 630.832.0075 or send an email to info@peters.com to get started! Peters & Associates engineers are dedicated to securing your network; with 24/7 monitoring and support, our Managed Services and PULSE Alarm will never leave you guessing.

Download the slide deck here.

Watch the full recording here.

Watch the snippet below: