Krafty Internet Marketing Forum
No one could prevent another ‘WannaCry-style’ attack, says DHS official - Printable Version

+- Krafty Internet Marketing Forum (https://kraftymarketingprofits.com/internetmarketingforum)
+-- Forum: Search Engine Optimization (https://kraftymarketingprofits.com/internetmarketingforum/Forum-search-engine-optimization--44)
+--- Forum: Black Hat Search Engine Optimization (https://kraftymarketingprofits.com/internetmarketingforum/Forum-black-hat-search-engine-optimization--46)
+--- Thread: No one could prevent another ‘WannaCry-style’ attack, says DHS official (/Thread-no-one-could-prevent-another-%E2%80%98wannacry-style%E2%80%99-attack-says-dhs-official--73172)



No one could prevent another ‘WannaCry-style’ attack, says DHS official - FaithMillsM2V - 08-12-2021

<p>The US government may not be able to prevent another global cyber attack like wannacry, a senior cybersecurity official said.<br>Jeanette Manfra, assistant director of cybersecurity at the National Security Agency for Cybersecurity and Infrastructure Security (CISA), said on stage at TechCrunch Disrupt SF that the 2017 WannaCry cyber attack, which resulted in hundreds of thousands of computers around the world being infected with ransomware, was a unique problem because it spread so quickly.<br></p>


RE: No one could prevent another ‘WannaCry-style’ attack, says DHS official - BiestaGetse - 08-17-2021

Maybe not, but you can certainly mitigate it's effecte by:
Having regular tested, known good backups of all data.
be able to re-image affected computers over your intranet
And, to prevent getting infected in the first place (These attacks typically start with a successful (spear) phishing campaign or a compromised poular website.)


RE: No one could prevent another ‘WannaCry-style’ attack, says DHS official - RichardSmithe - 08-17-2021

You need an effective security awareness education program, with quantifiable results. Not a one off, but with regular updates (Monthly/quarterly ideally, 6 monthly at a minimum).
To measure the effectiveness of this education, have some internally developed test phishing emails sent to all employees, and for those who are caught, give extra training and suppoer - always with a positive approach, there should never be ant negative/punishment feeling. And a small reward when they don't get caught next time.


RE: No one could prevent another ‘WannaCry-style’ attack, says DHS official - AngelaJohnston - 08-17-2021

In her statement, Manfra said the threat was caused by ""open access"" and ""ineffective controls.""
""We found that it was challenging to contain,"" she said. ""It wasn't easy to determine the source of its origin,"" Manfra said the agency's cybersecurity will work to prevent the possibility of such attacks in the future.
These are, of course, the familiar words of any politician. Still, it seems to me that there is just a big problem in the government in security awareness. Most likely, there were just employees who made gross errors in implementing some systems; maybe vulnerable was just employees' smartphones.


RE: No one could prevent another ‘WannaCry-style’ attack, says DHS official - BiestaGetse - 08-17-2021

<p>"
<!--StartFragment-->In her statement, Manfra said the threat was caused by ""open access"" and ""ineffective controls.""<br>
""We found that it was challenging to contain,"" she said. ""It wasn't
easy to determine the source of its origin,"" Manfra said the agency's
cybersecurity will work to prevent the possibility of such attacks in
the future. <br>
These are, of course, the familiar words of any politician. Still, it
seems to me that there is just a big problem in the government in <a href="https://websec.nl/en/security-awareness/" target="_blank" class="mycode_url">security awareness</a>.
Most likely, there were just employees who made gross errors in
implementing some systems; maybe vulnerable was just employees'
smartphones.
<!--EndFragment-->

"<br></p><p><br>I agree with you</p>