Cybersecurity Watch

October 2018

European Cybersecurity Month

The sixth edition of the European Cybersecurity Month (ECSM) ended on Wednesday 31 October 2018. This month dedicated to prevention and announcements on cybersecurity provided an opportunity to discuss 4 main themes:

  • Apply basic cyber hygiene
  • Increase your digital skills and knowledge
  • Identify cyber scams
  • Emerging technologies and privacy

The various activities (conferences, workshops, training, etc.) organized throughout France made it possible to discuss the evolution of threats, solutions to protect oneself and one’s company, how to comply with new regulations (e. g. RGPD), good practices to be respected, etc. At the initiative of the European Union Agency for Cybersecurity (ENISA), this month aims to raise public awareness of the importance of cybersecurity by keeping people informed about the latest trends and measures to ensure their IT security. On this occasion, ANSSI (French National Cybersecurity Agency) published a set of tools and guides that you can find on the following link: https://www.ssi.gouv.fr/agence/cybersecurite/mois-de-la-cybersecurite-2018/

You can also find various information on cybersecurity, tools, quizzes, etc. on the official ECSM website (https://cybersecuritymonth.eu/).

Office 365 phishing

Phishing is a technique that is still widely used by hackers. This technique makes it possible to exploit the human flaw and steal information, sometimes critical, about a person or even a company. Recently, sustained phishing campaigns targeting the Microsoft Office365 service have intensified. With data centralization, and migration to cloud services such as Office365, hackers can acquire credentials when giving access to any type of victim information. A person with administrative rights can thus lose a lot of money and information to his company. It is therefore important to be more vigilant and to pass on good practices to your employees. As a reminder, here are the good practices to follow:

  • Do not trust the sender’s name.
  • Do not click on the links and be suspicious of attachments in emails.
  • Notify your IT department if you have any doubts about an email.
  • Do not answer and/or provide confidential information.
  • Keep your messaging and anti-spam system up to date.

Vulnerability in libssh: CVE-2018–10933

During the month of October 2018, a critical vulnerability on the server-side libssh library was disclosed. This vulnerability allows an attacker to connect to an SSH server by bypassing authentication processes. All previous versions 0.8.4 and 0.7.6 of libssh are vulnerable.

Don’t forget to update your SSH servers if you haven’t already done so.

You can find more information on the libssh.org website: https://www.libssh.org/security/advisories/CVE-2018-10933.txt

Cyberprotect ThreatScore

Last month, Cyberprotect made its IT threat scoring system available to the public and the IT community. This system allows you to know the risk level of a domain name or IP address. Based on daily analyses of more than 500 million events and our artificial intelligence system, ThreatScore Cyberprotect aims to improve IT security for all by providing access to our scoring database.

ThreatScore is available at this address: https://threatscore.cyberprotect.fr

You can find more information on ThreatScore by following this link : https://www.cyberprotect.fr/threatscore-a-cyber-threat-scoring-system/