Kaseya Phishing | New Brunswick offers cybersecurity programs | The Cyber Review

July 7, 2021
Written by Farah

3 ways to keep up with cybersecurity demands

Organizations are finding it difficult to keep up with the increase and sophistication of cyber attacks. But, here are 3 ways to keep up:

1. Automate

There is a shift towards automation using AI and machine learning. Automation helps tasks get done quicker and efficiently. By increasing automation, people can work on high value tasks. Automation should still work hand in hand with human intelligence, where people are monitoring the system and working on higher intelligence tasks.

2. Set priorities

Companies should review their cybersecurity strategy and how they manage security. IT staff should meet with management to understand and set the companies priorities. Identify the important processes, potential risks and measures to protect them.

3. Move beyond password access

Considering cyber criminals are getting more sophisticated with the attacks. Strong passwords and multi-factor authentication shouldn't be the only focus. There is a move toward using biometrics or mobile phones to verify identity.

New Brunswick to offer bilingual cybersecurity program to all high school students

New Brunswick high schools will offer a three-year bilingual cybersecurity skills program linked to Cisco’s Networking Academy.

“The program will help solidify New Brunswick as a leading centre for cybersecurity in Canada and enable the province to keep up with the growing demand for cybersecurity jobs,” the partners said in a joint announcement.

The courses will be a part of the regular school work but mostly online. Graduates will earn an industry-recognized credential as a Cisco-Certified Cyber Ops Associate.

Due to the cybersecurity skills gap, the investment and program aims to equip graduates with skills and credentials to stop into cybersecurity jobs or enroll in higher education (post-secondary).

Education Minister Dominic Cardy said the program fits in with New Brunswick’s goal of offering more job-focused education opportunities to students.

”We’ve been looking for opportunities to build partnerships with corporations, non-profits with whole range of groups outside traditional government partners, because the global movement in education is moving towards personalization, and the digital experience to learning is not just talking about doing something but doing it as part of your studies,” he said. “The work Cisco is doing around cybersecurity is going to offer opportunities to 1,500 New Brunswick high school students to take hands-on cybersecurity courses as part of their regular high school work. That is exactly the sort of direction I want to see education move – showing students not just what the jobs of the future are going to be like, but letting them participate in those jobs today, giving them a grounding, finding out if this is what they’re going to do with their lives.”

Beware of emails with alleged Kaseya-themed security updates

Cyber criminals recently sent an email campaign that tries to take advantage of ransomware scares after the Kaseya attack.

The message, spotted by Malwarebytes, has a subject line “Our Shipping Renewal 2021,” which is a standard header for phishing which the attacker hopes will get serious attention.

The message itself, from someone who appears to be a supplier — says, “Guys please install the update fro= microsoft to protect against ransomware as soon as possible. This is fi=ing a vulnerability in Kaseya.” The attached link seems at first glance to come from Kaseya. There’s also an attachment called “SecurityUpdates.”

Clues that the message is a phishing attack:

- the email address of the sender is a jumble of words

- the name of the email sender is different from the name in the body of the message

- there are those odd = signs in the message instead of letters

Someone new or anxious might click on the link or download the attachment which is why cybersecurity training, education, and awareness is extremely important.