BROADCASTS.com

Good Morning and Welcome to the ProactiveIT Cyber Security Daily number 30.  It is Tuesday December 24, 2019. I am your host Scott Gombar. Merry Christmas All   This podcast is brought to you by Nwaj Tech, a Client Focused and Security Minded IT Consultant based in Central Connecticut.  You can visit us at nwajtech.com If you haven’t updated Google Chrome to the latest version yet..do it.   Citrix vulnerability jeopardizes over 80,000 companies globally Twitter Fixes Bug that Enabled Takeover of Android App Accounts A flaw in the Twitter for Android App has been patched.  The vulnerability allows would be attackers to take control of Twitter accounts and send tweets and dms.  If you use Twitter on Android please update immediately. A note from the FBI re: LockerGoga and MegaCortex "Since January 2019, LockerGoga ransomware has targeted large corporations and organizations in the United States, United Kingdom, France, Norway, and the Netherlands. The MegaCortex ransomware, first identified in May 2019, exhibits Indicators of Compromise (IOCs), command and control (C2) infrastructure, and targeting similar to LockerGoga." Have a BCDR plan.  Backup regularly. Test Backups and Keep a backup offline Ensure all software and operating systems are up to date Enable 2FA and have a strong password policy Disable RDP wherever it is not needed.  Ensure RDP ports are blocked externally.  Use RDP over VPN. Use third party software to further secure RDP Audit the creation of new accounts. Run port scans to ensure unneeded ports are closed and nothing is listening that shouldn’t be listening.. Disable SMBv1  Monitor AD for access levels, account changes and new accounts Make sure you are using the most up-to-date PowerShell and uninstall any older versions. "Enable PowerShell logging and monitor for unusual commands, especially execution of Base64 encoded PowerShell" New Mozi P2P Botnet Takes Over Netgear, D-Link, Huawei Routers Colorado Department of Human Services and Sinai Health System Alert Patients About HIPAA Breaches Holiday Tip -  If you’re giving anyone a gaming console for holidays unpack it, set it up and install all the updates and then pack it up.  Update servers are hit pretty hard on Christmas day. Doing this allows the gift recipient to enjoy the gift rather than wait for updates. Merry Christmas All.  We will talk again Thursday.  Stay Secure.