U.S. critical infrastructure organizations had to strengthen their cybersecurity defenses amid the growing prevalence of cyberattacks, according to The Hill.
Significantly increased ransomware attacks against the healthcare sector further exacerbated by the COVID-19 pandemic have prompted hospitals and other health organizations to bolster cybersecurity program funding, as well as hiring efforts for network defense efforts, said Dartmouth Health Senior Cybersecurity Architect Christopher Plummer.
"I think many [health delivery organizations] just don't know exactly where they're supposed to be in terms of human resources when it comes to cybersecurity they just know they need people," Plummer added.
On the other hand, the financial industry, which has typically been ahead in cybersecurity, has been moving to increase investments in cyber resilience following recent attacks, especially against the cryptocurrency sector.
"As in many industries, the thinking has broadened from focusing primarily on cybersecurity and defense to include strategic focus on cyber resilience or ensuring continuity of operations even in the face of an attack," said Financial Services Information Sharing and Analysis Center Global Head of Intelligence Teresa Walsh.
Meanwhile, American Petroleum Industry Director of Operations Security and Emergency Response Suzanne Lemieux noted that the energy industry has enhanced cyber defenses and cybersecurity education programs following last year's attack against Colonial Pipeline.
Aside from featuring over 40 million signals from the DNS Research Federation's data platform and the Global Anti-Scam Alliance's comprehensive stakeholder network, the Global Signal Exchange will also contain more than 100,000 bad merchant URLs and one million scam signals from Google.
While some threat actors established fraudulent disaster relief websites as part of phishing attacks aimed at exfiltrating financial details and Social Security numbers from individuals seeking aid, others impersonated Federal Emergency Management Agency assistance providers to create fake claims that enabled relief fund and personal data theft.
Malicious GitHub pages and YouTube videos containing links for purported cracked office software, automated trading bots, and game cheats, have been leveraged to facilitate the download of self-extracting password-protected archives.