Skip to main content
Cyber Security

Cybersecurity Risk Alert

By January 6, 2020No Comments

There is currently a heightened risk of cyber-attacks from hackers affiliated with the Iranian government. The Iranian government has vowed to retaliate against the United States for the death of Qassem Soleimani.  Given Iranian capabilities and history, U.S. entities should prepare for the possibility of cyber-attacks.

It is particularly concerning that Iran has a history of launching cyber-attacks against the U.S., and the financial services industry.  For instance, in 2012 and 2013, Iranian-sponsored hackers launched denial of service attacks against several major U.S. banks.  And the U.S. government recently advised in June 2019 it observed “recent rise in malicious cyber activity directed at United States industries and government agencies by Iranian regime actors and proxies,” and that Iranian attackers were increasingly using highly destructive attacks that delete or encrypt data.

BMIT therefore strongly recommends that all regulated entities heighten their vigilance against cyber-attacks.  While currently there are no specific, credible, reports of new Iranian-sponsored cyber-attacks in the past few days, all regulated entities should be prepared to respond quickly to any suspected cyber incidents.  Iranian-sponsored hackers have historically relied primarily on common hacking tactics such as email phishing, credential stuffing, password spraying, and targeting unpatched devices.

BMIT therefore recommends that all regulated entities ensure that all vulnerabilities are patched/remediated (especially publicly disclosed vulnerabilities), ensure that employees are adequately trained to deal with phishing attacks, fully implement multi-factor authentication, review and update disaster recovery plans, and respond quickly to further alerts from the government or other reliable sources.  It is particularly important to make sure that any alerts or incidents are responded to promptly even outside of regular business hours – Iranian hackers are

known to prefer attacking over the weekends and at night precisely because they know that weekday staff may not be available to respond immediately.

Any questions or comments regarding this alert should be directed to support@bostonmit.com

Tags:

Nicholas Salem

Nicholas Salem

As the CEO of BMIT, a leading managed IT services company, Nick Salem is responsible for providing strategic leadership and direction to the organization. With over 15 years of experience in the IT industry, Nick has a strong track record of driving business growth and improving operational efficiency through the use of technology.

Related Posts

Cyber SecurityMicrosoft

Andres Freund and the Silent Guardians of the Internet

For all its seamless functionality, the internet is a complex and ever-evolving beast. Behind the scenes, countless heroes toil away, maintaining the digital infrastructure.
Nicholas Salem
Nicholas SalemApril 4, 2024
Cyber Security

Written Information Security Program (WISP) – What is it? Do I need it?

Massachusetts data security regulations went into effect in 2010 requiring every company that owns or licenses “personal information” about Massachusetts residents to develop, implement, and maintain a Written Information Security Program known as a WISP. Your WISP must contain certain minimum administrative, technical, and physical safeguards to protect “personal information”. Despite this requirement, many companies, particularly those not physically located in Massachusetts, have not done so. Historically, the absence of a WISP is something that went unnoticed, but that may no longer be the case due to a recent change in the Massachusetts breach notification law. Massachusetts has amended its data breach notification law to require organizations that experience a data security incident to notify the Massachusetts Attorney General and the Massachusetts Director of Consumer Affairs & Business Regulation whether the organization implemented a WISP. This new reporting requirement highlights both the legal and practical need to implement a WISP. What changed? Jason Wong @jasonhk1920 Effective as of April 11, 2019, organizations that experience a…
Nicholas Salem
Nicholas SalemMarch 20, 2023
close up photo of plugged cables Cyber SecurityIT SupportTech Talk

Windows Update KB5009543, KB5009566 breaks L2TP VPN connections (Update)

Microsoft has released emergency out-of-band (OOB) updates for Windows to address multiple issues caused by security updates issued as part of the January 2021 Patch Tuesday.
Nicholas Salem
Nicholas SalemJanuary 23, 2022