PAUL COLMER
  • Vision
  • Blog
  • Influencer
  • Certifications
  • Vision
  • Blog
  • Influencer
  • Certifications
Search by typing & pressing enter

YOUR CART

16/1/2018 0 Comments

Top 3 Targeted CyberAttackS from 2017

Today is my first day back as a cloud cyber coach in 2018.  So I thought I'd start off the year with a quick revision of the Cloud Security Alliance Top #Cloud Threats, known as the Treacherous 12.  This was updated to include specific real-life examples in November 2017:

https://downloads.cloudsecurityalliance.org/assets/research/top-threats/Treacherous-12_Cloud-Computing_Top-Threats.pdf
Picture
Followed by more revision of the OWASP Top 10 threats that are relevant when developing software, which was updated in 2017:

​https://www.owasp.org/images/7/72/OWASP_Top_10-2017_%28en%29.pdf.pdf
Picture
This lead to me to refresh my memory on the most significant advanced persistent threat (APT) events of 2017, as well as the definition of an APT. 

So an Advanced Persistent Threat is a specialised and generally sophisticated attack that we often associate with CyberWarfare and Cyber espionage.  It generally consists of installing malicious software onto a number of hosts into an organisation, orchestrated by a third party, and results in some form of damage to the infected organisation, i.e. credit card data being exposed (Sony) or data being destroyed via encryption (WannaCry).

A found a great resource from Kaspersky Labs that provides a visual dashboard for all known APTs. 

​https://apt.securelist.com/#!/threats/
Picture
Here are the Top 3 most dangerous threats found towards the end of 2017:

1
ShadowPad - A company called NetSarang produce server management tools for large corporate networks.  Their products, available via download, had become infected with an encrypted payload from a malicious actor.  Software should be removed and the latest 'clean' copies installed.

https://securelist.com/shadowpad-in-corporate-networks/81432/

2
NoPetya / ExPetr - This is ransonware which is spread via the use of custom tools, such as Mimikatz.  It reboots the system after infection and starts to encrypt data onto NTFS partitions, which affects Windows PC's and servers.

https://securelist.com/schroedingers-petya/78870/

3
WannaCry - Well publicised in the media, this is also ransonware, and exploits a known vulnerability on Windows devices, called 'EternalBlue' .  If your Windows devices are patched against EternalBlue exploit, then you're safe, however many organisation did not and were susceptible to WannaCry.
​
https://securelist.com/wannacry-ransomware-used-in-widespread-attacks-all-over-the-world/78351/
https://twitter.com/DigitalColmer
0 Comments

Your comment will be posted after it is approved.


Leave a Reply.

    Categories

    All Active Directory Architecture Big Data Blockchain Cloud Comedy Cyber DevOps Driverless Cars MicroServices Office 365 Scaled Agile Social Media

    Picture

    Author​​

    Paul Colmer is an AWS Senior Technical Trainer.  Paul has an infectious passion for inspring others to learn and to applying disruptive thinking in an engaging and positive way.

    Paul has experience in building digital architecture strategies.  This includes the development and execution of training material and workshops, architecting and leading digital transformation initiatives, providing expertise on social media marketing, as well as advanced presenting using comedy, drama and music.

    Certifications include: Amazon Web Services(3 x Associates + 1 ML Specialty), Scaled Agile Framework (SPC), Cloud Security (CCSP), DevOps Culture (DevOps Foundation & DevSecOps Engineering), Big Data (EBDP), Data Science (EBDA), Microsoft Azure (AZ-900), Office 365 and a few others...... 

    He is currently one of the Rise.Global Top 50 Global Cloud influencers on social media.

    ​www.rise.global/the-cloud-social-influencers-power-100/p/1804096/r/2556192

    And one of the OnalyticsTop 100 Big Data influencers on social media:

    onalytica.com/blog/posts/big-data-top-influencers-and-brands/

    He is also a keen writer and an award-winning open-mic comedian.

    Contact Paul Colmer via LinkedIn.
    ​
    Or simply watch his videos on YouTube.

    Archives

    January 2023
    November 2022
    December 2021
    May 2020
    April 2020
    March 2020
    February 2020
    January 2020
    November 2019
    October 2019
    September 2019
    August 2019
    July 2019
    June 2019
    May 2019
    April 2019
    March 2019
    February 2019
    January 2019
    December 2018
    November 2018
    October 2018
    September 2018
    August 2018
    July 2018
    June 2018
    May 2018
    April 2018
    March 2018
    January 2018
    December 2017
    November 2017
    October 2017
    September 2017
    August 2017

    RSS Feed

Proudly powered by Weebly