Why CISA’s China Cyberattack Playbook Is Worthy of Your Attention
Tuesday, July 27, 2021
Companies can contact CISA to request incident response resources or technical assistance related to these threats.
Unless you’re required to do so legally, it’s usually “not super important” to notify law enforcement that you’ve been hit by ransomware, said ilia Kolochenko, CEO at cybersecurity vendor ImmuniWeb. With APT40, however, it’s a good idea to contact the authorities, he said.
CISA might have more information about the attack, such as secret backdoors the attackers could have left in place or other sensitive intelligence. "I don't think CISA would share that intelligence publicly at this time so as not to hinder the investigation," he said. "But if you contact CISA they might share some additional insights." Read Full Article
CPO Magazine: Third Party Security Failure Caused 1 TB Data Breach at Saudi Aramco; Hackers Play Puzzle Games With Oil Giant
CPO Magazine: Data Leak Reveals Pegasus Spyware Found In Use Unlawfully in 20 Countries, With Capability to Break Current iPhone Security