Welcome to the inaugural edition of InCyber Regular! We talk about cyber security issues and topics especially impactful to industrial and commercial small to medium businesses. Now that we've got that settled..

In today's edition: we try a 3-2-1 format. (Also, update Chrome).

Get Knowledge

Chrome + North Korea

Tough day for Google. Three major security concerns with Chrome in 24 hours.

South Korean security researchers uncovered a zero-day exploit running malicious code through the Chrome browser. Looks like it had fingerprints from the boys up North.

Google released updates for the browser really quick fast. If you haven't already updated your own Chrome browser, do it. And tell your friends.

The internet can see your OT

Shodan - tag:ICS

Shodan, an Internet of Things (IoT) search engine and security group, released this hot map of internet-connected industrial control system devices. These are devices that we can all see because they're public-facing.

Takeaway: check your OT before you wreck your OT.

In related news: RDP security

Remote Desktop Protocol (RDP) is widely used for...well, remote access to machines. It has been for a long time. The scattering of the workforce to work from home in 2020 has dramatically increased RDP endpoints. And thus, made RDP much more important.

This article from Julie Security describes some of the problems and fixes: visible ports (lock 'em down), weak passwords (get a password manager for strong passwords + use MFA), and keep RDP software up to date.

Take action

Standard hygiene

WarAndPeas

No, we don't mean you, personally. We're talking security hygiene. And just like starting with a shower and a stick of deodorant for yourself, a password manager is both the easiest starting place and required for good hygiene.

There are a lot of good ones out there. Head and shoulders above the rest is 1Password. We'll have more to say about passwords next week. For the moment, just think about how many same or similar passwords you have. Let that sink in.

The story of Triton

In case you weren't already freaked out about how vulnerable manufacturing and commercial facilities are to attack, here's more proof. This Darknet Diaries podcast episode explores the nature and origins of the Triton ICS malware and how it almost....well, just listen to the episode.

If nothing else, it's a reminder to stay vigilant.

Preview

Next week, we're talking with Matt Cameron who knows more than a thing or two about industrial control systems and automation. He has a great story about getting invested in security and some knowledge to share to help us all be more secure.

(Also, have I mentioned you should update your Chrome browser...?)