Cutting Through the Cybersecurity Noise

Subheadline:

Here’s what’s important this week: September 10th, 2021

Original Release Date:

Friday, September 10, 2021

Details:

Take Action

This is your friendly reminder to sign up for this month’s Cyber Threat Brief! We have a new, revamped format, so we hope to see you on the 4^th Thursday of this month!
Sign-Up link: https://register.gotowebinar.com/register/1562816556709846030
People implement security in various ways. For programmers, security is through coding practices. The Hacker News created a cute article with fun descriptions about hardening the code of imbedded systems, such as your smart toaster. The article talks about why people may worry about their IoT, why coding practices for IoT is specialized, and how people can learn about finding code vulnerabilities on a practice/game platform called secure code warrior.
Note: This analyst has not tried the game, but it looks nice.
Reference: https://thehackernews.com/2021/09/fighting-rogue-toaster-army-why-secure.html
The Open Web App Security Project (OWASP) released a peer review draft for 2021’s top 10 most exploited web application security vulnerabilities! For anyone who has interest in supporting the research, you may want to have a look.
Reference: https://owasp.org/Top10/

Be Aware

The REvil’s “Happy Blog”, the ransomware operator’s blog, was taken down after they hacked Kaseya. The group and its websites have since gone dark, until recently. The Happy Blog is available again, as of September 7^th, and likely means compromises involving REvil’s ransomware will start happening, again.
Reference:

Arizona Cyber Trends

Please refer to the document attached.

Reminders

Report potential, suspected, and/or confirmed cyber threats to the ACTIC via:

Bulletin:

See more:

Arizona Counter Terrorism Information Center