JohnsTek Capability Statement JohnsTek, Inc. is a Strategic Technology Engineering company providing solutions in two primary categories: Cyber Risk Management and Systems Integration. With a primary focus on Enterprise Security, Critical Infrastructure Protection, and Emergency Management, JohnsTek’s client profiles typically are Fortune 500 companies and Government Organizations in Defense, Intelligence, Law Enforcement, and Homeland Security.…
Organizations of all sizes should understand by now that they face threats to their data, whether it is stored or accessed on a private network, internet cloud service, or mobile device. Whether the organization is one person or one million people, we are all targets of malicious cyber activity. Hopefully this list will challenge you…
Date/Time of Report – 2018-22-3 14:30 APT/Vector Name – Criminal Hacker Organizations, Ransomware-as-a-service (RaaS), Malware-as-a-service (MaaS) Examples – Raas; Cerber, Satan, Hostman, Flux, Atom – MaaS; WannaCry Purpose/Target – Financial remuneration, intellectual challenges, vengeance against certain organizations, alleviation of boredom, and social gains Method – Most commonly spear-phishing Source – First seen from Russia over…
Date/Time of Report – 2018/03/22 14:53 APT/Vector Name – Fancy Bear AKA Names – APT28, Pawn Storm, Sofacy Group, Sednit and STRONTIUM Purpose/Target – The threat group is known to target government, military, and security organizations, especially Transcaucasian and NATO-aligned states. Fancy Bear is thought to be responsible for cyber-attacks on the German parliament, the…
A DHS data breach was detected on May 2017 during a DHS Office of the Inspector General criminal investigation. A former employee had unauthorized access to a copy of the department’s case management system. The exposure was made public on January 3, 2018; a total of 246,167 federal government employees’ PII was stolen. The stolen…
Consumer Fraud and Theft Rampant During Holiday Season! According to Javelin Strategy and Research, $16 Billion was stolen from consumers in 2016! Most of that was perpetrated using New Account Fraud, where the thief uses stolen identities to open new store accounts and make purchases at same time. With the onset of the Holiday…
Equifax, one the Nation’s largest credit reporting agencies, was breached and over 143 million Americans personal information were exposed to criminals intent on stealing identities. The best advice that can be given is, take precautions: For Companies with hosted web services, the breach was achieved through a vulnerability in Apache Struts, a commonly…
JohnsTek, Inc. has been commissioned by the State of South Carolina to provide Information Security Services in the form of Vulnerability Management, Security Risk Assessments, Penetration Testing and other Consulting Services. To perform this work to the highest level of expertise in this field, JohnsTek Inc. has formed the JohnsTek Team, comprised of JohnsTek, Inc…
The good news this week for many enterprises is that the Petya/NotPetya Ransomware scare is not really ransomware. The bad news, Petya turned out to be a worm that seizes control of infected devices, spreads to other devices on the network, digitizes its files, and has no intention of releasing them back to the owner,…