Enterprise Security

The Security division of Maine OIT is here to proactively protect the information and assets entrusted to us by the people of Maine. 

"Together, We Make IT Secure"

Intruders (also referred to as hackers, attackers, or crackers) target computers for a number of reasons, none of which are good.  They steal information, corrupt data, damage assets and reputations in pursuit of their goals.

Unfortunately, hackers are generally cutting edge in their technology and are continually either discovering or creating new vulnerabilities and ways to attack.   This makes a good security program and practices essential to the protection of information and equipment for anyone connecting to the internet.

Through this website, we will share some of our information and tools to help you proactively protect your information and assets whether you are a municipality, small or large business or individual.

General Information

In the News
Links to websites containing information relating to current IT Security issues as highlighted by the Department of Homeland Security.

March 15, SecurityWeek– (International) U.S. Government Indicts Four Over 2014 Yahoo Hack, Including Two Russian FSB Officers.The US government today announced the indictment of four individuals charged with computer hacking, economic espionage and other offenses in connection with the 2014 breach of Yahoo that involved the theft of information on at least 500 million user accounts. Three of the accused are Russian nationals currently living in Russia. The fourth, Karim Baratov, is a Canadian and Kazakh national who was arrested in Canada on Tuesday.
Source: http://www.securityweek.com/us-government-indicts-two-russian-fsb-officers-over-yahoo-hack

March 17, SecurityWeekNetwork Layer DDoS Attacks Hit Record Levels: Imperva(International) According to the company’s latest quarterly Global DDoS Threat Landscape Report, the emergence of powerful Internet of Things (IoT) botnets and the declining costs of DDoS-for-hire services are driving the increased threat of disruptive DDoS attacks. While network layer attacks grew in size, application layer incidents increased in frequency, the report reveals.

October 6, SecurityWeek – (International) Mac malware can abuse legitimate apps to spy on users. A security researcher from Synack discovered that Apple Mac operating system (OS) X malware can monitor an infected system for legitimate user-initiated video sessions on applications such as FaceTime, Skype, and Google Hangouts, and piggyback on those legitimate sessions to record video and spy on users without their knowledge or authorization.
Source: http://www.securityweek.com/mac-malware-can-abuse-legitimate-apps-spy-users

September 30, SecurityWeek – (International) Tofsee malware distribution switched from exploit kit to spam. Security researchers from Cisco Talos reported that attackers stopped distributing the Tofsee ransomware via the RIG exploit kit (EK), and began leveraging spam email campaigns to deliver the malware downloaders, which instruct victims to download and open the ZIP archive attached to the message that contains an obfuscated JavaScript file with a WScript downloader, which runs an executable from a remote server controlled by the attacker. Researchers stated the malware allows hackers to conduct cryptocurrency mining, carry out distributed denial-of-service (DDoS) attacks, and send spam, among other malicious actions.
Source: http://www.securityweek.com/tofsee-malware-distribution-switched-exploit-kit-spam

<<News Archives<<

Website Privacy Policy:  Enterprise Security does not collect any information from the use of this site.