"Whether you work for local law enforcement, a utility provider, a hospital, or a small or large company, you need to protect your critical infrastructure against cyber infiltration. The threat that cybercriminals pose to public entities and private businesses is substantial. A single intrusion could mean economic loss, bankruptcy, and in some cases, loss of human life."
Deputy Attorney General Rod Rosenstein
Cyber crime is one of the greatest threats facing our country, and has enormous implications for our national security, economic prosperity, and public safety. The range of threats and the challenges they present for law enforcement expand just as rapidly as technology evolves.
In Rhode Island, the United States Attorney’s Office, and federal and state law enforcement have teamed up to investigate cyber crimes, and to educate the public and businesses on ways to help avoid becoming a victim of a cybercrime and what to if they become victimized.
If you believe you, your family or your company are a victim of a cybercrime, or are interested in learning more about protecting yourself or your company from cybercrimes, please contact:
Rhode Island Fusion Center: (401) 444-1117
Rhode Island State Police Joint Cyber Task Force: (401) 444-1718 or (401) 444-1710.
FBI Cyber Division CYWATCH 24/7 support: 1-855-292-3937 or email CyWatch to report intrusions firstname.lastname@example.org
United States Secret Service, Providence Resident Agency 24hr: (401) 331-6456
United States Attorney’s Office (401) 709-5042
Online Reporting & Resources
To report internet fraud/phishing: http://www.ic3.gov/default.aspx
DHS cybersecurity resources and information: http://www.dhs.gov/topic/cybersecurity
To access cyber threat information in the National Cyber Awareness System go to the US Computer Emergency Readiness Team (US CERT): https://www.us-cert.gov/ncas
To join FBI Infragard: https://www.infragard.org/
Membership includes receiving emails concerning Cyber Threat Updates
Quarterly meetings with a Cyber Focus
General questions relative to connecting to federal resources or joining FBI Infragard contact Brian Pires at the U.S. Attorney’s Office at (401) 709-5042.
Information and links that provide important information and guidance on helping to avoid becoming a victim of cyber crime and answers to some frequently asked quetions
Cybersecurity 101: What You Can Do at Home
DO NOT IGNORE SECURITY UPDATES
Having the latest security software, web browser, and operating system are the best defenses against viruses, malware, and other online threats.
USE TWO-FACTOR AUTHENTICATION
Use a username and password (something you know) and another form of identification (something you have) such as an RSA generated security code, a USB security key, voice ID, facial recognition, iris recognition or fingerprint scanning.
DON’T CLICK ON LINKS IN EMAILS AND WHEN IN DOUBT, THROW IT OUT
Links in email, tweets, posts, and online advertising are often the way cybercriminals compromise your computer. If it looks suspicious, even if you know the source, it’s best to delete or if appropriate, mark as junk email.
PROTECT ALL DEVICES THAT CONNECT TO THE INTERNET
Along with computers, smart phones, gaming systems, and other web-enabled devices need protection from viruses and malware.
Expert tips on how to protect your personal information online
10 Tips to Stay Cyber Safe While Travelling
Information and photos to assist users in detecting ATM skimmers, gas pump skimmers and other related fraud devices.
Three Ways to Thwart Hackers' Attempts at Persuasion
4 Ways to Protect Against the Very Real Threat of Ransomware
A Proactive Approach To Incident Response: 7 Benefits
Cybersecurity 101: What the Average Business User Can Do
How to Protect Yourself from Macro-based Malware
My anti-virus is up to date so I am protected, right?
7 common cyber security myths debunked
5 Email Security Tips to Combat Macro-Enabled Ransomware
Cybercriminals are increasingly looking to macro variants, leaving organizations to defend against advanced tactics like macro-based malware attacks any way they can.
Email clients and web browsers top the list of applications used to trigger the ransomware payload. It’s critical that organizations get a handle on their email traffic if they are going to protect against phishing and spearphishing attacks. The big problem, however, is that the ransomware threat extends well beyond the email traffic itself to encompass any file with macros – that is, embedded scripts that contain programming code.
Here are five recommendations designed to help stop weaponized attachments and macro-enabled malware delivered via email
1. Disable Macros
2. Use only essential applications
3. Enable email attachment sandboxing
4. Neutralize active code at the gateway
5. Train and educate your workforce
For more information on the five recomendations above clink the link below:
10 Important Cyber Security Tips for Small Business Owners
By Ahmad Hamidi March 10, 2017 in isBuzznews
(Excerpts) Small businesses are generally not well secured due to being labeled as small businesses, but their security threats are not necessarily small. On any given day, they can fell to the hacking, malware, ransomware and data breaches due to their cheap and dated protection. But with the few steps, you can avoid such cyber security risks. If you think that your small business is not vulnerable to cybercrimes like big corporations, you need to think again. 43 % of cyber-attacks target the small businesses!
Here are simple yet efficient cyber security tips for the small business owners to minimize the risks of hacking, malware, and ransomware.
Use Strong Passwords:
You must use strong passwords composed of numerals, alphabets and characters. If your passwords are strong, it is a tough job for someone to crack it. Encourage your employees and users to create strong passwords.
Minimize the Number of Password Attempts:
A hacker will try all of the passwords randomly till they successfully open up your account. It means that your account is not safe even with a 6 digit pin creating a million unique possibilities.
Remember, a password cracking software can guess your codes in minutes. So, you must limit the number of attempts at all stages of your authentication process. This point is as useful as creating strong password for your system.
Choose Your Password Manager Software Wisely:
Password manager tool creates strong passwords and remembers them for you. This is why many businesses prefer using password manager software. If you are considering the same, you have to think many times because of the various concerns. For example, your all passwords are stored in its database, meaning a hacker can get all if he goes for just one.
Prefer On-Screen Keyboard to Feed Sensitive Information:
Nowadays, hackers are so sophisticated that they can record your keystrokes with the help of keylogging software, especially when you are using shared networks. What you can do to avoid your information leaking to other ends is that by using virtual or on screen keyboard, keylogging software can’t keep the track of the on screen keyboard being operating with the mouse clicks.
Be Careful About Backups:
What about your data backup? While data backups are essential to effective security, mismanagement and mishandling of backups can make them vulnerable to the theft. For example, if you choose cloud storage, your data is stored at remote location. Any negligence means that someone can gain access to your data easily. Therefore, you must encrypt and password-protect your documents before storing them on the cloud or remote server. You must go extra mile to encrypt your sensitive data. In this way, you can have a peace of mind knowing that you have an extra layer of protection for the remotely secured documents.
Educate Employees About Cyber Security
When security breaches are more common than you think, it is good to educate your employees about cyber security before you have any breach. Here are the few strategies to keep in mind to train your employees in cyber security:
•Train everyone—from top to the bottom
•Conduct seminars frequently
•Tell them how to recognize the attack
•Regularly test your employee’s IT security knowledge
•Make clear your policies about hacking, data breaching and use of devices in your organization.
•Identify the inside threat in your company
Avoid Storing the Customer’s CVV Number
Getting the customer’s card details, with customer’s consent, can help you make the future checkouts convenient. On the flip side, this practice makes your customers data exposed to the hackers.
Control Physical Access to Systems and Network Components:
Don’t permit outsider or unauthorized person to use your system. If it is required, in the case of technician from another firm, provide them the general PC or have someone to supervise them during the tasks. Lock your computer up after leaving them and insist your staff to do so. Apart from that, you have to monitor the personal devices of the employees.
Update Your Software Regularly:
Never ignore the pop up messages on your screen which remind you about upgrading your software. Allowing software updates is one of the most important things you can do with your computer security. If you don’t, your computer is vulnerable to malware and hacking. Software vendors release software updates to address the security risks in their existing products that could be exposed to the hackers anytime. They generally contain vulnerabilities fixes and product enhancement.
Secure Your Networks:
Make sure your Wi-Fi network is hidden and secure to avoid the unauthorized access. And here are the ways to do that:
•Hide your Service Set Identifier available in wireless access point and router.
•Encrypt your wireless access point
•Disable access from the outside network
•Scan your network regularly
Cyber Smarts Cybersecurity Awareness Program for Middle and High School Students
What is Cyber Smarts?
Students helping students to stay safe while:
• Using Social Media
• Sending Texts and Emails
• Downloading from the Web
• Shopping on the Internet
Why Cyber Smarts?
• Online predators are savvy and troll the Web
• Online shopping is not without risk
• Cyber bullying has real world implications
• What you post on the web never goes away
To bring the Cyber Smarts program to your community please contact Brian Pires at
Federal Trade Commission (FTC) Video Data Breach Response
TC Video The NIST Cybersecurity Framework and the FTC
Cybersecurity is a shared responsibility. Please find resources and tips so we can each do our part to keep the Internet safe.