General

Threat Advisory: SamSam Ransomware

Threat Advisory: SamSam Ransomware

The Department of Homeland Security (DHS) National Cybersecurity and Communications Integration Center (NCCIC) and the Federal Bureau of Investigation (FBI) have recently issued a US-CERT alert on the SamSam ransomware. SamSam has targeted multiple industries since its initial release, including critical infrastructure.  According to the US-CERT, the SamSam ransomware exploits Windows servers to gain persistent access to a victim’s network... Read More
December 4, 2018
Cybersecurity CEO: Ransomware Attacks On Hospitals Predicted To Increase 5X By 2021

Cybersecurity CEO: Ransomware Attacks On Hospitals Predicted To Increase 5X By 2021

Healthcare CIOs face an increasingly hostile cyberscape. Los Angeles, Calif. – Nov. 21, 2018 In April’s Cybersecurity CEO column, I explained that manufacturing is the new healthcare. The industry has been under constant attack - from malware like Cryptolocker doing real damage, to insider threat on the rise, to the lack of security controls around interconnected IoT and OT environments... Read More
November 21, 2018
Threat Advisory: Suspicious Scanning Activity

Threat Advisory: Suspicious Scanning Activity

Details Herjavec Group has detected significant malicious scanning attempts across multiple client environments, including entertainment, finance and legal organizations. These scans, mostly targeting web applications and other external facing devices, do not appear to be targeted in nature but rather part of a general, large scale attempt to discover vulnerabilities within networks. Herjavec Group has observed several IPs scanning new clients daily,... Read More
November 7, 2018
Cybersecurity CEO: The World Will Need to Cyber Protect 100X More Cloud Data by 2021

Cybersecurity CEO: The World Will Need to Cyber Protect 100X More Cloud Data by 2021

Secure private and public clouds will wipe out traditional data centers over the next 3-4 years. Los Angeles, Calif. – Oct. 16, 2018 The degree of difficulty in protecting businesses from cyber attacks grows in proportion to a number of factors. Emerging threat actors, the prominence of interconnected devices and the most critical in my opinion – the VAST amount... Read More
October 17, 2018
Herjavec Group Cybersecurity Cast: Ensuring Online Safety at Work

Herjavec Group Cybersecurity Cast: Ensuring Online Safety at Work

Herjavec Group has launched its very own podcast, The Cybersecurity Cast! Produced by Herjavec Group, The Cybersecurity Cast features discussions on the latest news, trends, vulnerabilities, and exploits in the cybersecurity space. Topics include healthcare, ransomware, identity and access management, and more. Episode 9: Ensuring Online Safety at Work In 2003, the Department of Homeland Security began a collaborative effort... Read More
October 16, 2018
Threat Advisory: HIDDEN COBRA FASTCash Campaign

Threat Advisory: HIDDEN COBRA FASTCash Campaign

Systems Affected Retail Payment Systems Overview This joint Technical Alert (TA) is the result of analytic efforts between the Department of Homeland Security (DHS), the Department of the Treasury (Treasury), and the Federal Bureau of Investigation (FBI). Working with U.S. government partners, DHS, Treasury, and FBI identified malware and other indicators of compromise (IOCs) used by the North Korean government... Read More
October 3, 2018
Threat Advisory: HIDDEN COBRA FASTCash-Related Malware

Threat Advisory: HIDDEN COBRA FASTCash-Related Malware

Herjavec Group circulates US – Cert advisories as this notification warrants attention and may have significance to your Enterprise network environment. If the following advisory is applicable to your environment, Herjavec Group recommends your IT team review the technical details included and monitor your environment for any susceptible systems. Herjavec Group’s analysts are working with applicable vendor partners to apply... Read More
Mediaplanet: Industry 4.0 Ramps Up the Need for Better Cybersecurity Strategies

Mediaplanet: Industry 4.0 Ramps Up the Need for Better Cybersecurity Strategies

BUSINESS SOLUTIONS Manufacturing’s industry 4.0 embraces digital and physical interactions, but cybersecurity has to be considered when thinking about the future of interconnected technologies. Due to the Internet of Things (IoT) and interconnected technologies influencing manufacturing, we’ve now entered industry 4.0. “Industry 4.0 embraces digital and physical interactions while keeping reliability, safety and security top of mind,” said Robert Herjavec, Founder... Read More
October 1, 2018
Threat Advisory: Multiple Vulnerabilities in PHP Could Allow for Arbitrary Code Execution

Threat Advisory: Multiple Vulnerabilities in PHP Could Allow for Arbitrary Code Execution

The Multi-State Information Sharing & Analysis Center (MS-ISAC) has released an advisory on multiple Hypertext Preprocessor (PHP) vulnerabilities. An attacker could exploit one of these vulnerabilities to take control of an affected system. Herjavec Group encourages users and administrators to review MS-ISAC Advisory 2018-101 and the PHP Downloads page and apply the necessary updates. Additional Context: PHP lives in almost every environment in today’s... Read More
September 17, 2018
Cybersecurity CEO: NCSAM 2018 – C-Suite And Boardroom Executives Should Spread The Word

Cybersecurity CEO: NCSAM 2018 – C-Suite And Boardroom Executives Should Spread The Word

Herjavec Group is proud to be a National Cybersecurity Awareness Month Champion Los Angeles, Calif. – Sep. 17, 2018 I remember the first time the President of the United States called a presidential address on cybersecurity – May 2009. This represented a monumental shift for our industry as the world stopped to recognize the evolving threat landscape and the likelihood... Read More