Nozomi Networks Labs
COVID-19 Cybersecurity: Community Support
ABOUT LABS
Nozomi Networks Labs is dedicated to reducing cyber risk for the world’s industrial and critical infrastructure organizations.
Through our cybersecurity research, and collaboration with industry and institutions, we’re helping defend the industrial systems that support everyday life.
Collaborating to Reduce OT and IoT Cyber Risk
Nozomi Networks Labs is working with a broad range of experts, industry leaders and institutions to improve industrial cybersecurity.
If you’d like to work together, we’d love to hear from you!
COVID-19 Cybersecurity: Community Support
Working from home has become the norm for millions of people around the world. In many cases remote access is now the only safe way to maintain standard industrial operational processes. This tectonic shift requires an immediate adaption to your organization’s OT and IoT security program.
As a free service to the global security community, the Nozomi Networks Labs team is sharing its knowledge and expertise by providing ongoing OT and IoT security support including:
COVID-19 Threat Defense Training Sessions
Nozomi Networks Labs is hosting free COVID-19 Threat Defense training sessions for cybersecurity professionals and their teams
COVID-19 OT and IoT Threat Intelligence
Nozomi Networks Labs will provide ongoing updates on COVID-19-related network indicators, ransomware and malware.
Guardian Community Edition
A free tool for OT and IoT security visibility and help identifying COVID-19-themed cyberattacks.
COVID-19 Threat Defense Training Sessions
To prevent cyberattacks from impacting your organization, it’s critical to proactively detect and respond to attacks, and train your team to spot phishing campaigns that use COVID-19-themed subjects.
Nozomi Networks Labs is hosting free COVID-19 Threat Defense training sessions for cybersecurity professionals and their teams:
Session 1
The Emerging Threat Intel Landscape: How Hackers Are Using COVID-19
Duration: 45 minutes
Session 2
Remote Access Monitoring: What to Watch Out for During the COVID-19 Pandemic
Duration: 30 minutes
Session 3
How to Use Guardian Community Edition to Counter COVID-19 Security Challenges
Duration: 50 minutes
Available as webinar only as a demo is shown
Session 4
Suzanne Spaulding: Dealing with OT & IoT Security in the COVID-19 Era
Duration: 30 minutes
Session 5
Viruses are Disrupting Our Supply Chains – Where Do the Biggest Vulnerabilities Lie?
Duration: 40 minutes
Session 6
The IoT Botnet Threat: What It Is and How to Deal with it
Duration: 45 minutes
Session 7
Smart Grids: Securing Encrypted Communications
Thursday, June 11, 2020
8:00 am PDT | 11:00 am EDT | 17:00 CET
Duration: 30+ minutes
COVID-19 Threat Intelligence
To help your organization proactively detect and prevent cyberattacks, Nozomi Networks Labs will provide ongoing updates on COVID-19-related network indicators, ransomware and malware.
COVID-19-Themed
Network Indicators
Last Update: April 14, 2020
Network IOCs (Indicators of Compromise)
COVID-19-Themed
Ransomware Rules
Last Update: April 7, 2020
Yara rules for detecting coronavirus ransomware
COVID-19 Informer
Malware Rules
Last Update: April 7, 2020
Yara rules for detecting COVID-19 Informer malware
COVID-19-Themed
Hash
Last Update: April 14, 2020
List of hashes that detect malicious files
COVID-19 CHINOXY
Backdoor Malware
Last Update: April 19, 2020
SNORT rule for detecting network infection
OT and IoT Security Visibility: Guardian Community Edition
Deep visibility into your OT and IoT environment, and identification of behavior that could compromise standard operations has never been more important.
Nozomi Networks free Guardian Community Edition gives you instant visibility into your OT and IoT networks. It uses passive, non-invasive technologies to detect devices operating within your environment and map your complete network without disrupting operations.
Use Guardian Community Edition to:
Discover up to 1,000 OT and IoT assets
See which OT assets are mistakenly connected to the Internet
Map the OT and IoT assets on your network
Identify OT and IoT asset configuration issues
Guardian Community Edition helps with COVID-19 Cybersecurity
New assertions (queries) have been added to Guardian Community Edition to help with COVID-19-related cybersecurity challenges:
Assertions for COVID-19 IOC Detection
Assertions that check for COVID-19 related IOCs in your network, such as communications with malicious IP addresses and URLs
Assertions for Remote Access Monitoring
Assertions that check the number of simultaneous remote connections and generate alerts if the number surpasses a threshold.
THE LATEST COVID-19 BLOGS
COVID-19 Chinoxy Backdoor: A Network Perspective
A prolific threat actor, active in Asia, sends documents to people in Kyrgyzstan about how the United Nations is helping to fight COVID-19.
Nozomi Networks Labs examines how network traffic analysis can detect this specific threat.
OT/IoT Security Superheroes: Tackling the Remote Employee Challenge
While the world is grappling with the COVID-19 pandemic, nation-state and other threat actors are capitalizing on the climate of fear, uncertainty and doubt to find OT and IoT security gaps and orchestrate new cyberattacks.
COVID-19 (coronavirus) Malware: New OT and IoT Security Tools
While the world is grappling with the COVID-19 pandemic, nation-state and other threat actors are capitalizing on the climate of fear, uncertainty and doubt to find OT and IoT security gaps and orchestrate new cyberattacks.
© 2020 Nozomi Networks, Inc.
All Rights Reserved.