WannaCrypt attacks: guidance for Operations Management Suite customers


WannaCrypt attacks: guidance for Operations Management Suite customers
  1. WannaCrypt attacks: guidance for Operations Management Suite customers
    blogs.technet.com
    Strengthening the security posture of your infrastructure is critical in protecting against evolving cyber threats. The following steps are recommended to safeguard your resources against the recent WannaCrypt ransomware attack: This recent WannaCrypt malware exploits a Service Message Block (SMB) vulnerability (CVE-2017-0145). Customers should immediately install MS17-010 to resolve this vulnerability. Review all SMB endpoints …
    Technology

Strengthening the security posture of your infrastructure is critical in protecting against evolving cyber threats. The following steps are recommended to safeguard your resources against the recent WannaCrypt ransomware attack:

  1. This recent WannaCrypt malware exploits a Service Message Block (SMB) vulnerability (CVE-2017-0145). Customers should immediately install MS17-010 to resolve this vulnerability.
  2. Review all SMB endpoints exposed to the internet, commonly associated with ports TCP 139, TCP 445, UDP 137, UDP 138. Microsoft recommends against opening any ports to the internet that are not essential to your operations.
  3. Disable SMBv1 – instructions located here: https://aka.ms/disablesmb1
  4. Utilize Windows Update to keep your machines up-to-date with the latest security updates.

Additional Steps for OMS Security

If you are using the Operations Management Suite (OMS) Security solution, we recommend additional steps to further protect your organization from attacks like these:

  1. Routinely assess that all systems are patched with latest updates. You can perform an update assessment to understand the current state of your computers and address the most critical threats in the Security and Audit dashboard. Follow the steps below to verify that all systems are patched with required security updates:
    • In the Microsoft Operations Management Suite main dashboard, click Security and Audit tile.
    • In the Security and Audit dashboard, click Update Assessment under Security Domains
  1. Use OMS Security to continuously monitor your environment for threats. Collect and monitor event logs and network traffic to look for potential attacks. Threat Intelligence option in the Security and Audit Dashboard will help you identify any potential threats in your environment and respond quickly:
    • In the Security and Audit dashboard, choose the 3 options in the Threat Intelligence tile
      1. Server with outbound malicious traffic will help you to identify if there is any computer that you are monitoring (inside or outside of your network) that is sending malicious traffic to the Internet.
      2. Detected threat types tile shows a summary of the threats that are detected. You can extract more information about each threat by clicking on it.
      3. Threat intelligence map will help you to identify the current locations around the globe that have malicious traffic and gather more details associated with those threats.
  1. Confirm that anti-malware is deployed and updated. If you are using Microsoft anti-malware for Azure or Windows Defender, Microsoft released an update last week which detects this threat as Ransom:Win32/WannaCrypt. If you are running anti-malware software from any number of security companies, you should confirm with your provider that you are protected. You can also use the OMS Security solution to verify that anti-malware, and other critical security controls, are configured for your c…
  1. Many Workers at 'World-Changing' Tech Companies Might as Well Work at Wal-Mart

    Nextgov.com - Technology
    05.22 / 17:29 nextgov.com
    The tech industry’s nontech workforce has a very different experience than Silicon Valley's software e…
  2. Expert Insight: 'We Take An Iterative Approach To Solving Problems'

    Channels.theinnovationenterprise.com - Technology
    Published Date: 2017-05-22 16:28:48 UTC Tags: Chief Innovation Officer, Innovation, Innovation Culture, Innovation Lab, Open Innovation, Product Innovation Title: Expert Insight: 'We Take An Iterative Approach To Solving Problems' Subtitle: We talk to Jim Roovers Head of Electronics, R&D at…
  3. French AIDS drama earns best reviews yet at Cannes Film fest

    Watermarkonline.com - Technology
    05.22 / 17:27 watermarkonline.com
    (Image from YouTube.) CANNES, France (AP) – 120 Beats Per Minute, a French AIDS drama with a full heart and a pounding rhythm, debuted at the Cannes Film Festival May 20 and quickly joined the shortlist of favorites for the festival’s coveted Palme d’Or prize. Directed by Robin Campillo, the co-screenwriter of the Palme d’Or-winning film […] The post French AIDS drama earns best reviews yet at Cannes Film fest appeared first on Watermark …
  4. Mayor Buttigieg backs Notre Dame walkout of Pence speech

    Watermarkonline.com - Technology
    05.22 / 17:27 watermarkonline.com
    South Bend Mayor Pete Buttigieg said Sunday he supports the students at University of Notre Dame who walked out on Vice President Mike Pence during his commencement speech over his anti-LGBT views and the Trump administration’s approach to marginalized communities. Buttigieg, the openly gay mayor who came to national prominence during his run to become […] The post Mayor Buttigieg backs Notre Dame walkout of Pence speech appeared first on Watermark O…
  5. Watermark on the Fringe: Soap Opera – Sloppy Seconds

    Watermarkonline.com - Technology
    05.22 / 17:27 watermarkonline.com
    You can always count on Central Florida vocal arts to give you Opera and musical theater mashed together like you’ve never seen them. Don and Lakme are returning contestants on Divo, a Bachelor-esque reality show. Among the people vying for carnations are a closeted lesbian Viking attempting to “turn off” her thoughts for Lakme, your […] The post Watermark on the Fringe: Soap Opera – Sloppy Seconds appeared first on Watermark O…
  6. Transgender people search for acceptance in church

    Watermarkonline.com - Technology
    05.22 / 17:27 watermarkonline.com
    COLUMBUS, Ohio (AP) – For many transgender people, faith communities are a place of judgment and rejection. For Marilyn Lloyd, they are a place of possibility. Lloyd, 62, and a transgender woman, found God at North Congregational United Church of Christ in Columbus. God and the church filled a void in Lloyd’s life she didn’t […] The post Transgender people search for acceptance in church appeared first on Watermark…
  7. Cait Brennan delivers on classic-sounding new album

    Watermarkonline.com - Technology
    05.22 / 17:27 watermarkonline.com
    If you’re gonna record at the legendary Argent Studios in Memphis and call the resulting album “Third” (an homage to the 1978 classic of the same name by power-pop heroes Big Star), you better have the goods to back it up. Fortunately, up-and-coming singer/songwriter/musician Cait Brennan has delivered an album worthy of its historic birthplace. […] The post Cait Brennan delivers on classic-sounding new album appeared first on Watermark Onlin…
  8. NASA orders up urgent spacewalking repairs at space station

    Blogs.abcnews.com - Technology
    05.22 / 17:27 blogs.abcnews.com
    NASA has ordered up urgent spacewalking repairs at the International Space…
  9. Far Cry 5 will take place within the US

    Overclock3d.net - Technology
    05.22 / 17:27 overclock3d.net
    Far Cry 5's first teaser trailer has been released, confirming that the game will be taking place within the…
  10. 3D Printing Pittsburgh: Makerspace Meetup During RAPID Brought Together Ultimaker, MatterHackers, Make:, Makers

    3dprint.com - Technology
    05.22 / 17:27 3dprint.com
    Not all of the excitement this month in Pittsburgh was housed at the David L. Lawrence Convention Center, as the Steel City welcomed members of the global additive manufacturing community for a very... View the entire article via our…
  11. Facebook Flooded With 'Sextortion' and Revenge Porn, Files Reveal

    Tech.slashdot.org - Technology
    05.22 / 17:24 tech.slashdot.org
    An anonymous reader writes: Facebook had to assess nearly 54,000 potential cases of revenge pornography and "sextortion" on the site in a single month, according to a leaked document. Figures shared with staff reveal that in January Facebook had to disable more than 14,000 accounts related to these types of sexual abuse -- and 33 of the cases reviewed involved children. The company relies on users to report most abusive content, meaning the real scale of the problem could be much greater.…
  12. Ford Ousted Its CEO And Is Doubling Down On Self-Driving Cars

    Tech.slashdot.org - Technology
    05.22 / 17:24 tech.slashdot.org
    An anonymous reader shares a report: At a press conference today, Ford announced that it had replaced CEO Mark Fields with Jim Hackett, director of the company's autonomous-car research. Previously the CEO of furniture company Steelcase (and a former athletic director at the University of Michigan), Hackett took a seat on Ford's board in 2013. He has been running the company's Smart Mobility subsidiary since March 2016. Smart Mobility is tasked with securing Ford's long-term future. The…
  13. Objections raised against Virgin Mobile UAE's licence

    Arabianindustry.com - Technology
    05.22 / 17:23 arabianindustry.com
    Is Virgin Mobile UAE going to face the fate that the brand had to face in Qatar in…
  14. du and DarkMatter partner for cybersecurity services

    Arabianindustry.com - Technology
    05.22 / 17:23 arabianindustry.com
    Telco to offer DarkMatter products and services to its enterprise customer…
  15. Nokia 3310 costs QAR199 in Qatar

    Arabianindustry.com - Technology
    05.22 / 17:23 arabianindustry.com
    The reimagined Nokia 3310 goes on sale in Qatar at selected…
  16. Dubai's new 2071 Zone aims to be at the heart of innovation

    Arabianindustry.com - Technology
    05.22 / 17:23 arabianindustry.com
    Abdulaziz Khalid Al Jazairi is appointed director of new initiative to create innovative solutions and…
  17. TDIC enhances network security with Pulse Secure

    Arabianindustry.com - Technology
    05.22 / 17:23 arabianindustry.com
    Pulse Secure solutions manage network access, security standards for Tourism development…
  18. Chinese regulator approves VW-JAC Motor electric car venture

    Capitalbay.com - Technology
    05.22 / 17:23 capitalbay.com
    Germany's Volkswagen AG (VOWG_p.DE) and Anhui Jianghuai Automobile Group (JAC Motor) have received approval from Chinese regulators to form a joint venture to make…
  19. Report: New Cyber Attack Worm Uses Seven Leaked NSA Tools; ‘WannaCry’ Used Just Two

    Breitbart.com - Technology
    05.22 / 17:20 breitbart.com
    A new cyber attack worm uses seven leaked tools from the National Security Agency (NSA), according to a…
  20. Zomato working with ‘ethical hacker’ to improve security

    Welivesecurity.com - Technology
    05.22 / 17:20 welivesecurity.com
    Zomato has confirmed that it has been communicating with the hacker responsible for stealing the data of around 17 million of its customers. The post Zomato working with ‘ethical hacker’ to improve security appeared first on WeL…