August 2, 2022

Good morning, everyone!

This week’s critical vulnerabilities: FileWave has released a fix for a critical vulnerability in its mobile device management (MDM) system SonicWall has released a fix for a critical vulnerability in its Global Management System (GMS) and Analytic On-Prem products Patch all the things!

Attackers are becoming faster: just 15 minutes

A new report from Palo Alto Networks shows that ”attackers typically start scanning for vulnerabilities within 15 minutes of one being announced."

How do you protect yourself against a security flaw you don’t even know exists? The top three responses from the Editorial Board of SANS NewsBites are:

1. Patch management
   
   Patch early, patch often! Operating systems, software applications, firmware. Keep everything as up-to-date as possible. Turn on auto-update whenver possible. And it’s important to do manual updates from time to time. Seriously.
   
   
2. 2FA/MFA
   
   I think you’ve heard this before? And read below for more.
   
   
3. Endpoint detection & response
   
   For businesses, implementing EDR is a great tool for increasing your network security

And, oh, don’t forget the biggie – Think before you click! If you don’t click on that link or open that attachment, then you don’t run that malware installer.

2FA thwarts ransomware gangs

Marijn Schuurbiers, head of operations at Europol's European Cybercrime Centre (EC3) recently said:

"We've done investigations where ransomware criminals were monitored. In certain investigations, we saw them trying to access companies – but as soon as they would hit two-factor authentication in this process, they would immediately drop this victim and go to the next"

Remember, cyber criminals, like most criminals, are opportunistic – they go for the easy prey first. Just like thieves walking around turning doorknobs and pulling on latches to see if somebody left something unlocked, cyber criminals try a simple attack, and if it is thwarted, they go looking for the next easy victim. Don’t be the easy victim! Implement 2FA anywhere and everywhere it is available to you.

Stay safe and secure!

Remember, you can read past editions of this newsletter on our website, along with tons more information under the Resources tab.

Talk to you again soon!

Glenda R. Snodgrass
grs@theneteffect.com
(251) 433-0196 x107
https://www.theneteffect.com
For information security news & tips, follow me!

Security Awareness Training Available Here, There, Everywhere!

Thanks to COVID-19, lots of things went virtual, including my employee Security Awareness Training. Live training made a comeback a few months ago, but many organizations are retreating. No worries. Wherever you and your employees may be, I can deliver an interesting and informative training session in whatever format you prefer.

Contact me to schedule your employee training sessions. They're fun! ☺