
COVID-19 Cybersecurity: Community Support
As the COVID-19 coronavirus spreads across the globe and malicious threat actors find new ways to exploit the pandemic for their own gain, the critical infrastructure we rely on for everyday life has never been at greater risk.
Working from home has become the norm for millions of people around the world. In many cases remote access is now the only safe way to maintain standard industrial operational processes. This tectonic shift requires an immediate adaption to your organization’s OT and IoT security program.
As a free service to the global security community, the Nozomi Networks Labs team is sharing its knowledge and expertise by providing ongoing OT and IoT security support including:
COVID-19 Threat Defense Training Sessions
Nozomi Networks Labs is hosting free COVID-19 Threat Defense training sessions for cybersecurity professionals and their teams
COVID-19 OT and IoT Threat Intelligence
Nozomi Networks Labs is providing ongoing updates on COVID-19-related network indicators, ransomware and malware.
Guardian Community Edition
A free tool for OT and IoT security visibility and help identifying COVID-19-themed cyberattacks.
COVID-19 Threat Defense Training Sessions
To prevent cyberattacks from impacting your organization, it’s critical to proactively detect and respond to attacks, and train your team to spot phishing campaigns that use COVID-19-themed subjects.
Nozomi Networks Labs is hosting free COVID-19 Threat Defense training sessions for cybersecurity professionals and their teams:
Session 3
How to Use Guardian Community Edition to Counter COVID-19 Security Challenges
Duration: 50 minutes
COVID-19 Threat Intelligence
To help your organization proactively detect and prevent cyberattacks, Nozomi Networks Labs is providing ongoing updates on COVID-19-related network indicators, ransomware and malware.
COVID-19-Themed Network Indicators
Last Update: April 14, 2020
Network IOCs (Indicators of Compromise)
COVID-19-Themed Ransomware Rules
Last Update: April 7, 2020
Yara rules for detecting coronavirus ransomware
COVID-19 Informer Malware Rules
Last Update: April 7, 2020
Yara rules for detecting COVID-19 Informer malware
OT and IoT Security Visibility: Guardian Community Edition
Deep visibility into your OT and IoT environment, and identification of behavior that could compromise standard operations has never been more important.
Nozomi Networks free Guardian Community Edition gives you instant visibility into your OT and IoT networks. It uses passive, non-invasive technologies to detect devices operating within your environment and map your complete network without disrupting operations.
Use Guardian Community Edition to:
- Discover up to 1,000 OT and IoT assets
- See which OT assets are mistakenly connected to the Internet
- Map the OT and IoT assets on your network
- Identify OT and IoT asset configuration issues
Guardian Community Edition helps with COVID-19 Cybersecurity
New assertions (queries) have been added to Guardian Community Edition to help with COVID-19-related cybersecurity challenges:
Assertions for COVID-19 IOC Detection
Assertions that check for COVID-19 related IOCs in your network, such as communications with malicious IP addresses and URLs
Assertions for Remote Access Monitoring
Assertions that check the number of simultaneous remote connections and generate alerts if the number surpasses a threshold.