For CIRMA Liability-Auto-Property pool members:
All Cyber Liability incidents should be reported immediately to Cynthia Mancini, LAP Claims Unit Manager at:
Business: 203-498-3019 Cell: 203-804-5917 (For After-Hours Emergencies) Email: cmancini@ccm-ct.org(Additional contact is Cathy Gambrell, Sr. Technical Claim Manager, at 203-946-3750.)
CIRMA places a comprehensive Cyber Insurance program through an A.M. Best A rated carrier for our Liability-Auto-Property (LAP) Pool Members to help protect them in the event of a cyber event. CIRMA LAP Pool Members have access to liability coverage, forensics investigation and breach management services from best-in-class breach responders with experience in computer forensics, data breach notification, credit and ID monitoring, and legal counsel. View the flyer
CIRMA has also developed a number of risk management resources, including regional training programs and E-Learning Center training, and cybersecurity whitepaper to help our members manage this risk. CIRMA's Cyber News & Alerts service provides IT departments and municipal and school leaders current cyber alerts from MS-ISAC, the Multi State Information Sharing and Analysis Center and U.S. Homeland Security. > Click here to SUBSCRIBE to CIRMA's Cyber News and Alerts Today!
MS-ISAC GDPR Compliance: Why Local Governments Should Be Concerned
Get a general overview of the General Data Protection Regulation, (GDPR) that is going into effect on May 25, 2018. It provides insight as to why all local governments should be concerned about compliance with the regulation.
Cyber Security Minute: Phishing Cyber Security Minute: Patches
Cyber Security Minute: Benefits of Patching Cyber Security Minute: Ransomware
by the Center for Internet Security
The Cyber Disruption Response Plan will be incorporated as an annex to the State Response Framework, and is a roadmap for state, local, and private sector entities on how and when to report a cyber incident, as well as an outline of emergency response actions to be taken depending on the severity of the disruption and its potential impact on the state and its communities. The CDRP is a companion document to the Cyber Incident Response Plan, which outlines specific technical response actions. The Quick Reference Guide consists of two charts found in the CDRP,and is intended to provide readily available guidance in a fast moving incident. The Communications Flow Matrix outlines the flow of information in situations that are likely to affect public health, safety, or confidence. It is recommended that you add contact information for the key partners to whom you would report a cyber incident, including the CT Intelligence Center, which can be reached at CTIC@ct.gov. The Cyber Security Threat Level Matrix is a summary of the five distinct cyber threat levels,and provides general guidance regarding the communication and anticipated response activities for each of the levels. The CDRP provides more detailed response actions for each threat level. Cyber Security Response PlanCyber Response Quick Response Quick Reference
New Election Security Resources
The Center for Internet Security released A Handbook for Elections Infrastructure Security aimed at providing a tool for both election officials and their technical staff. The handbook is broken into three parts that address the risks to elections infrastructure, the architecture of elections systems, and security best practices and controls. The best practices and controls take into account associated implementation costs and are tiered according to asset class (Device, Process, Software, User), priority (high and medium), and the applicable CIS Control(s). The handbook also provides security best practice examples from state and local organizations, as well as procurement guidance and links to additional security resources. For assistance implementing these recommendations and best practices, CIS provides an Excel worksheet to guide technical staff through the process.
CIRMA CYBER WEBINAR SERIESSession 1 - Phishing - presented by CIRMA Risk Management Services on June 24, 2020> click here to view the webinarWebinar Time: 30 minutes
CYBERSECURITY BULLETINS
U.S. Dept of Homeland Security - CISA Cyber+Infrastructure
New Jersey Cybersecurity & Communications Intergration Cell (NJCCIC):
Multi-State Information Sharing and Analysis Center (MS-ISAC):
Cybersecurity and Infrastructure Security Agency (CISA):
09-14-20 - Critical Patches Issued for Microsoft Products, UPDATED September 14, 2020 - PATCH NOW
09-08-20 - Critical Patches Issued for Microsoft Products, September 8, 2020 - PATCH NOW
09-01-20 - Activity Alert (AA) - Technical Approaches to Uncovering and Remediating Malicious Activity
08-26-20 - CISA Joint Technical Alert (TA) and Malware Analysis Reports (MAR) - North Korean Remote Access Tools
08-12-20 - Critical Patches Issued for Microsoft Products, UPDATED August 12, 2020 - PATCH NOW
08-11-20 - Critical Patches Issued for Microsoft Products, August 11, 2020 - PATCH NOW
07-14-20 - Critical Patches Issued for Microsoft Products, June 14, 2020 - PATCH NOW
06-25-20 - MS-ISAC Monthly Security Tips Newsletter | Volume 15, Issue 6 - Virtual Conferencing Platform Tips
06-08-20 - Critical Patches Issued for Microsoft Products, June 09, 2020 - PATCH NOW
06-04-20 - A Vulnerability in Zoom Client Could Allow for Arbitrary Code Execution
05-13-20 - Critical Patches Issued for Microsoft Products, May 12, 2020 - PATCH NOW
05-10-20 - Activity Alert (AA) - Microsoft Office 365 Security Recommendations
04-28-20 - Zoom Presents Targets of Opportunity Threatens Multiple Sectors
04-17-20 - Sextortion Email Phishing Campaign
04-15-20 - Critical Patches Issued for Microsoft Products, April 14, 2020 - PATCH NOW
04-08-20 - National Cyber Awareness System (NCAS) Activity Alert (AA) - COVID-19 Exploited by Malicious Cyber Actors
04-02-20 - FBI Releases Guidance on Defending Against VTC Hijacking and Zoom-bombing
04-01-20 - MS-ISAC End-of-Support Software Report List
03-24-20 - COVID-19 Related Phishing Campaigns and IOCs
03-20-20 - FBI Sees Rise in Fraud Schemes Related to the COVID-19 Pandemic
03-10-20 - Critical Patches Issued for Microsoft Products, March 10, 2020 - PATCH NOW
02-14-20 - Cyber Threat Actors Expected to leverage Coronavirus Outbreak
02-11-20 - Critical Patches Issued for Microsoft Products, February 11, 2020 - PATCH NOW
02-06-20 - Multiple Vulnerabilities in Various Cisco Products Could Allow for Arbitrary Code Execution - PATCH NOW
To receive the Green Alerts listed below, please email Jacqueline Smith, Marketing & Creative Design Associate, at jsmith@ccm-ct.org
09-14-20 - Malware IPs and Domains Observed by MS-ISAC
09-08-20 - Malware IPs and Domains Observed by MS-ISAC
08-27-20 - COVID-19 Worldwide Situation Report - 08-27-20 (Update 126)
08-18-20 - Malware IPs and Domains Observed by MS-ISAC
08-14-20 - COVID-19 Worldwide Situation Report - 08-14-20 (Update 122)
08-10-20 - COVID-19 Worldwide Situation Report - 08-10-20 (Update 121)
08-03-20 - COVID-19 Worldwide Situation Report - 08-03-20 (Update 119)
08-03-20 - Malware IPs and Domains Observed by MS-ISAC
07-30-20 - COVID-19 Worldwide Situation Report - 07-30-20 (Update 118)
07-27-20 - Malware IPs and Domains Observed by MS-ISAC
07-23-20 - COVID-19 Worldwide Situation Report - 07-23-20 (Update 116)
07-20-20 - Malware IPs and Domains Observed by MS-ISAC
07-16-20 - COVID-19 Worldwide Situation Report - 07-16-20 (Update 114)
07-13-20 - Malware IPs and Domains Observed by MS-ISAC
06-29-20 - Malware IPs and Domains Observed by MS-ISAC
06-29-20 - COVID-19 Worldwide Situation Report - 06-20-20 (Update 108)
06-17-20 - COVID-19 Worldwide Situation Report - 06-17-20 (Update 104)
06-15-20 - Malware IPs and Domains Observed by MS-ISAC
06-08-20 - COVID-19 Worldwide Situation Report - 06-08-20 (Update 98)
06-08-20 - Malware IPs and Domains Observed by MS-ISAC
06-03-20 - COVID-19 Worldwide Situation Report - 06-03-20 (Update 94)
06-02-20 - Ongoing Public Unrest Spurring Cyber Attacks Against SLTT Governments
06-01-20 - Malware IPs and Domains Observed by MS-ISAC
05-27-20 - COVID-19 Worldwide Situation Report - 05-27-20 (Update 87)
05-26-20 - Malware IPs and Domains Observed by MS-ISAC
05-22-20 - COVID-19 Worldwide Situation Report - 05-22-20 (Update 82)
05-20-20 - COVID-19 Worldwide Situation Report - 05-20-20 (Update 80)
05-18-20 - USSS Alert on Massive Unemployment Fraud
05-18-20 - COVID-19 Worldwide Situation Report - 05-18-20 (Update 78)
05-15-20 - COVID-19 Worldwide Situation Report - 05-15-20 (Update 75)
05-11-20 - COVID-19 Worldwide Situation Report - 05-11-20 (Update 71)
05-11-20 - Malware IPs and Domains Observed by MS-ISAC
05-06-20 - COVID-19 Worldwide Situation Report - 05-06-20 (Update 66)
05-04-20 - COVID-19 Worldwide Situation Report - 05-04-20 (Update 64)
05-04-20 - Malware IPs and Domains Observed by MS-ISAC
05-01-20 - COVID-19 Worldwide Situation Report - 05-01-20 (Update 61)
04-23-20 - Zero Day in Default iPhone Mail App Exploited in the Wild
04-20-20 - Malware IPs and Domains Observed by MS-ISAC
04-15-20 - COVID-19 Worldwide Situation Report - 04-15-20 (Update 45)
04-13-20 - Malware IPs and Domains Observed by MS-ISAC
04-10-20 - COVID-19 Worldwide Situation Report - 04-10-20 (Update 40)
04-07-20 - COVID-19 Worldwide Situation Report - 04-07-20 (Update 37)
04-06-20 - Malware IPs and Domains Observed by MS-ISAC
04-02-20 - COVID-19 Worldwide Situation Report - 04-02-20 (Update 32)
03-30-20 - COVID-19 Worldwide Situation Report - 03-30-20 (Update 29)
03-30-20 - Malware IPs and Domains Observed by MS-ISAC
03-23-20 - Malware IPs and Domains Observed by MS-ISAC
03-23-20 - COVID-19 Worldwide Situation Report - 03-23-20 (Update 22)
03-16-20 - Malware IPs and Domains Observed by MS-ISAC
03-11-20 - CYIM: Cyber Actors Exploiting the Coronavirus
03-10-20 - Cyber Intel Advisory: Internet-facing SLTT Cameras Potentially Vulnerable to Unauthorized Access
03-09-20 - Malware IPs and Domains Observed by MS-ISAC
03-06-20 - COVID-19 Worldwide Situation Report - 03-05-20 (Update 05)
03-02-20 - Malware IPs and Domains Observed by MS-ISAC
02-24-20 - Malware IPs and Domains Observed by MS-ISAC
02-18-20 - Malware IPs and Domains Observed by MS-ISAC
02-10-20 - Malware IPs and Domains Observed by MS-ISAC
02-07-20 - FBI FLASH: YARA Rules to Iedntify Kwampirs Malware Employed in Ongoing Cyber Supply Chain Campaign Targeting Global Industries
02-03-20 - Malware IPs and Domains Observed by MS-ISAC
Cyber Security - PDF
Creating Your Own BYOD Program: Risk Management for Business Use of Personal Devices - PDF
To help address the growing challenge of cyber threats and computer security, CIRMA's updated E-Learning Center now provides two informative high-quality trainings free to CIRMA members: 1. Computer Security Basics 2. Cybersecurity Threats to Public EntitiesHow to get startedVisit CIRMA E-Learning Center to log in and take the courses. CIRMA offers nearly 330 E-Learning training courses on a large variety of topics. Click here to download a current list of available topics. If you are not currently registered, please email your contact information to Martin Connelly at mconnelly@ccm-ct.org or call 203-946-3743.
Download CIRMA's Cyber SecurityTips Poster
Wannacry and Other Alerts & Bulletins
Indicators Associated With WannaCry Ransomware - FBI Flash - PDF