💰💣

Nozomi Networks Security Incident

2021 1725 days ago Resolved

Incident Overview

Situation Description

The article discusses the Colonial Pipeline breach and a CISA ransomware alert, emphasizing the need for improved cybersecurity practices and government action against ransomware attacks.

Event Types

Ransomware Malware / Destructive Attack

Industry Sector

Critical Infrastructure

Geographic Scope

Global

Response Actions

Shared Threat Intelligence Collaborated with Peers / Community

Impact Analysis

Event Types (2 identified)

Ransomware Malware / Destructive Attack

Financial Impact

$0 USD

Records Affected

Primary Impacts

Operational Disruption Financial Loss

Key Decisions Made

Governments should provide financial incentives to organizations for cybersecurity upgrades.; Governments could provide proactive and ongoing defensive support during breaches.; Governments should facilitate a framework for organizations to share threat intelligence and breach information with confidentiality safeguards.

Technical Analysis

Attack Method

Unknown

Additional Information

Live Demo: The Nozomi Networks Platform in 15 Minutes Watch Academy Labs Careers Partner Login Support Request Demo Responding to the Colonial Pipeline Breach & CISA Ransomware Alert by Edgard Capdevielle | May 13, 2021 Another development in the ransomware attack on Colonial Pipeline is the release of an alert from the U.S. governments Cybersecurity and Infrastructure Security Agency (CISA). The alert provides some best practices for preventing business disruption from ransomware attacks. If youre a critical infrastructure or industrial organization, or a government agency, you should certainly review CISAs advice and use it as a guide to improve your defenses. It covers many of the basic tenets of securing your infrastructure. That said, advice is great and useful, but action is better and more impactful. In essence, more needs to be done. And it needs to be done not just by asset owners, but also by governments Beating Ransomware Requires Government Action The FBI reports that ransomware attacks were up 20% in 2020, and even more tellingly, ransom demands rose 225%. 1 And, according to an annual report on global cybersecurity, there were a total of 304 million ransomware attacks in 2020, a 62% increase from a year prior. 2 The damage caused by ransomware criminals is so substantial, both financially and to general confidence, that governments should be acting aggressively to deter future attacks. For example, financial incentives could be made available to organizations to accelerate their cybersecurity upgrades. Governments could also provide defensive support during a breach, but more importantly, in a proactive, ongoing way. One idea under discussion is to require organizations to share their information regarding threat intelligence and cybersecurity breaches. This is understandably causing some concerns and resistance. To alleviate this roadblock, governments could facilitate a framework and mechanisms with confidentiality and commercial safeguards in...

... (truncated for display)

Quick Facts

Company:: Nozomi Networks
Date:: 2021
Status:: Resolved
Decision Maker:: Edgard Capdevielle
Position:: CEO
Published:: 13/05/2021

Source Information

Original Query

CISA alert ransomware response recommendations company implementation

View Original Source

Timeline

Information Published

13/05/2021

Incident Occurred

2021 (1725 days ago)

Status: Resolved

Estimated resolution based on age

Actions

View Company Profile

Navigation

Quick Stats