Des W.’s Post

Today, we released a Joint Cybersecurity Advisory with international partners about a People’s Republic of China (PRC) state-sponsored cyber group, APT40, and the current threat it poses to Australian networks. APT40 is conducting regular reconnaissance against networks of interest in Australia looking for opportunities to compromise its targets. The group uses compromised infrastructure, including small-office/home-office (SOHO) devices as operational infrastructure, to launch attacks that blend in with legitimate traffic, challenging network defenders. This regular reconnaissance allows them to identify vulnerable, end-of-life or no longer maintained devices on networks of interest, and rapidly deploy exploits. APT40 continues to find success exploiting vulnerabilities due to systems being unpatched. We strongly recommend implementing the ASD Essential Eight mitigation strategies, as well as additional relevant mitigations from our Strategies to Mitigate Cyber Security Incidents guidance. Mitigation that can reduce the effectiveness of the activity includes: • Logging and detection – maintaining comprehensive and historical logging information across web servers, window events and internet proxy • Patch management – implement a centralised patch management system to automate and expedite the patch process. • Network segmentation – segments networks to limit or block lateral movement by denying traffic between computers unless required. To read the advisory and learn more about how to identify, prevent and remediate APT40 intrusions, visit https://lnkd.in/g8YnRnG6. This advisory has been jointly issued by Cybersecurity and Infrastructure Security Agency, National Security Agency, Federal Bureau of Investigation (FBI), National Cyber Security Centre (UK), Communications Security Establishment Canada | Centre de la sécurité des télécommunications Canada, National Cyber Security Centre (NZ), Bundesnachrichtendienst (BND), Bundesamt für Verfassungsschutz (BfV), National Center of Incident Readiness and Strategy for Cybersecurity + National Police Agency (Japan), and National Intelligence Service + National Cyber Security Center (Korea).

🚫 Are you finding the new security regulation for telecoms (TSA) confusing? 🚫 Are you overwhelmed by TSA compliance? 🚫 Are you finding TSA compliance is getting in the way of your telecoms business? ✅ Reduce the compliance burden by at least 60% compared to other approaches ✅ Make responding to the regulator easier ✅ Take control of replying to your customers Reach out today at https://lnkd.in/ePrrkCXU

💥techUK has provided the incoming Labour government with a practical “to do” list to help the UK maximise the benefits of rolling out and taking up advanced connectivity across the nation. The Telecoms Action Plan – formed by techUK’s Communications Infrastructure and Services Programme – is structured as both a review and reflection on previous policy interventions, including the 2023 Wireless Infrastructure Strategy, and outlines a range of recommendations that new Labour policymakers can enact after 5 July 2024. The recommendations are informed by industry – and provide a set of clear wins that build on the successes of previous actions, or fulfils plans and ideas that were not able to complete in the previous government. ✅ Check out the Telecoms Action Plan here: https://orlo.uk/WqcJj Sophie Greaves | Jaynesh Patel | Tales Gaspar #techUKFutureTelecoms #techUKInfrastructure #5G #Telecoms #FullFibre #DigitalInfrastructure #NetworkInfrastructure #Connectivity __________ 𝐅𝐮𝐭𝐮𝐫𝐞 𝐓𝐞𝐥𝐞𝐜𝐨𝐦𝐬 𝐂𝐚𝐦𝐩𝐚𝐢𝐠𝐧 🛜 techUK's Future Telecoms Campaign highlights the UK’s strengths in advanced connectivity, as well as providing a collective voice to the leaders and innovators delivering the future of connectivity in the UK. techUK is shining a spotlight on the technologies, products and services that will shape the connectivity of tomorrow. We are convening members, stakeholders and innovators from across the digital infrastructure value chain to explore the service innovation that advanced networks can enable.  👉 For more information or to get involved, please visit our Future Telecoms hub:  https://orlo.uk/FTA12 #techUKFutureTelecoms ____________ 🌱 𝗝𝗼𝗶𝗻 𝗼𝘂𝗿 𝘁𝗲𝗰𝗵 𝗰𝗼𝗺𝗺𝘂n𝗶𝘁𝘆 🌍 https://orlo.uk/RmF5X

The UK Infrastructure Bank (UKIB) has committed £150m to accelerate Hyperoptic’s full fibre rollout and increase its committed debt facility to over £1.1bn Read the full story on the Fibre Provider site: https://lnkd.in/eHhdpv93 #isp #altnet #fullfibre #fibreprovider #ffttp #fibrebroadband #fibre #internet #telecomsector #channelpartner #networks #gigabit

Here's why every cyber security expert should care about business. And 5 ways anyone can keep updated. I have worked with hundreds of leaders over the last 6 years. One thing stands out: those who grasp business fundamentals excel. -They see how security impacts the entire organisation. -They earn trust and influence at the executive level. -They bridge the gap between technical & business. This ability to speak both languages makes them invaluable. They become the linchpin in strategic discussions. Here’s how you can do it too: 1) Listen to what drives decisions and what challenges the company faces. 2) Study financial reports to understand key metrics like revenue, profit margins, and costs. 3) Talk to key stakeholders to learn about THEIR goals and how THEY perceive security. 4) Follow industry news to anticipate risks and align your strategies with market movements. 5) Understand customer needs to guide your security measures in enhancing trust and satisfaction. Ultimately, you need to drive not just better security outcomes. But better business outcomes. Because this is what you leverage for growth. Your company & your career will thank you.

A lack of basic Cyber Hygiene is often a problem, but we have to acknowledge and accept that hostile state actors & Ransomware as a Service (RaaS) cybercriminals are targeting our NHS Cyber Security plans in our public services and the wider economy must also focus relentlessly on resilience & recovery - alongside UK Home Office cracking down on cybercrime with severe sanctions and prosecutions. Cybercrime is a serious threat and a form of sabotage offence that undermines the economic and national security and prosperity of the UK and its allies. The UK should use existing legislative levers more effectively to lead the world in fighting cybercrime and protecting businesses from malicious attacks. This will establish the UK as being the safest place in the world to do business for companies and the toughest place in the world to commit cybercrime. https://lnkd.in/ekh_Gae9 #McPartlandReview