El Diario del CISO El Diario del CISO (The CISO Journal) Edición 25 | Page 4

Influencers
Samuel Liles
Adventurer, CISO, Soldier, Marine, Tribal Officer, Deputy
Attribution of cyber adversaries
Key Points:
Attribution has three distinct layers; political, technical, and forensic
with each having different confidence levels and analysis strategies
Adversaries must interact with systems to exploit them and this
creates evidence or anomalies that can be used for attribution
Evidence can be tampered with but there are corresponding sensing
systems that remain outside of adversary control that can be used
for audit
Root cause blame for an incident rarely is a technical implementation
or user action but attribution remains the way to identify the threat
Three phases of attribution and corollary levels of confidence in
attribution.
The complete article is here
Silka Gonzalez
CPA CISSP CITP QSA
Threat Alert: Ransomware Attacks Cause More Turmoil
Editor’s Note: ERM, a leading cybersecurity company, is seeing an
increase in the number of ransomware attacks in Florida. This article
will help your organization understand how these attacks occur and
provide guidance on countermeasures.
You’re surfing the Internet when, all of a sudden, a pop-up shows up
saying that your computer and data are locked until you pay a
ransom. This is what most people know about Ransomware. In
reality, criminal coders are finding new and inventive ways to extort
organizations. Currently, there are two major kinds of ransomware –
one that encrypts your data and the other that locks you out of the
operating system, so you can’t access your system and the files on
it.
The complete article is here