Digital Management Inc – РИСК-АКАДЕМИЯ – АНО ДПО ИСАР

Hunter Strategy Awarded Subcontract With The National Institutes Of Health

riskacademy — Sat, 28 Nov 2020 06:32:28 +0000

WASHINGTON, Nov. 27, 2020 /PRNewswire/ — Hunter Strategy, a trusted provider of Cybersecurity Solutions, was recently awarded a subcontract with the National Institutes of Health (NIH) to support the Office of the Director (OD), the Office of Research Services (ORS), and the Office of Research Facilities (ORF) in improving cybersecurity posture and stability across all of their applications, systems and environments to meet requirements set forth by the Federal Information Security Management Act (FISMA). Hunter is partnering with Digital Management Inc (DMI) for this effort.

The Office of Research Services and the Office of Research Facilities have complex cybersecurity challenges, particularly in their Industrial Control Systems and their associated FISMA High requirements. To Support NIH OD, Hunter consultants will provide support to Cyber Workforce Management transformation, modernization of Industrial Controls Systems (ICS), harmonizing the existing ICS security baseline to define common controls between systems, improving OD’s risk management posture, re-imagining NIH cloud adoption with the Federal Risk and Authorization Management Program (FedRAMP), and developing a…

The Latest Ransomware Victim Is a NASA Contractor

riskacademy — Fri, 05 Jun 2020 23:41:41 +0000

As SpaceX and NASA celebrated their first human-operated rocket launch on May 30, cybercriminals behind a ransomware known as DopplePaymer launched an attack against one of NASA’s IT contractors.

According to a blog post by the hackers, the gang managed to breach the network of the Maryland-based Digital Management Inc, or DMI. This company provides IT and cyber-security services to several Fortune 100 companies and government agencies.

DopplePaymer hackers leaked almost 20 archive files belonging to NASA through a portal operated by the gang, including HR documents and project plans. Some of the employee details matched with public LinkedIn records.

Ransomware threatens to leak stolen data

The report claims that DopplePaymer managed to encrypt about 2,853 servers and workstations during the attack. It could not be independently corroborated whether the entire affected infrastructure is related to NASA.

The modus operandi of this ransomware is similar to that perpetrated by Maze or REvil — It threatens to release targeted company data if the ransom is not paid.

Speaking with Cointelegraph, Brenda Ferraro, VP of Third-Party Risk at third-party risk management firm Prevalent,…