WMUR Reports - Small businesses not immune from cyberattacks, local security experts warn

WMUR Interviews Jeff Stutzman of Wapack Labs on Cyber Threat Solutions
Security experts are advising that small businesses prepare for the threats they face from hackers and malware before it’s too late.

In May, the WannaCry hack paralyzed tens of thousands of computers that run hospital networks, public transportation and scores of other companies and government agencies worldwide. It made ransomware a household word.

“Most small businesses would have no way to protect themselves against this,” Wapack Labs COO Jeffery Stutzman said.

Stutzman contradicted the U.S. government by advising some to pay the ransom demanded by the hackers.

“If you need the ransom, we've gone out and we've bought bitcoins to pay ransoms for others. We paid one a month and a half ago. It was $30,000,” Stutzman said.

According to Stutzman, unless a business took preventative steps, such as backing-up hard drives and running anti-virus software constantly, paying ransom may be the only option. Hackers will typically make good on the ransom so they can get paid the next time.

“These guys want to know that they're going to get paid. They have help desks and technical services,” Stutzman said.

At Wapack Labs in New Boston, cyber analysts comb Twitter, Facebook and the dark web -- which is home to all things nefarious online, including human organs, guns and drugs for sale -- to identify threats and then notify the targets. They often do it free of charge.

“We mainly focus on software, malware and security hosting and carding -- anything to do with fraud or a digital threat,” Stutzman said.

Pedro Sanchez, who used to be a mechanic in the U.S. Marine Corps, is one of Stutzman’s employees. Stutzman, who is a retired naval intelligence officer, believes many military veterans are perfect for this work.

“They know what a threat looks like. They have work ethic. They come to work prepared and enthusiastic every single day,” Stutzman said.

Sen. Jeanne Shaheen, too, is focused on the threat of cyberattacks.

“I think all business today is at risk for a cyberattack. In the last month or so, we've seen two ransomware attacks. The most recent originated in Ukraine,” Shaheen said.

Shaheen said determining government's role in blocking cyber threats is a work in progress.

“I think the government has a responsibility to update our policies so we know how to go after perpetrators but we also need to help small business to respond,” Shaheen said.

Stutzman said small businesses can and should take cyber precautions.

“My advice always is, 'Come to us.' We put up a thing on our webpage that says, ‘For free. We'll tell you how to take care of this,'" Stutzman said.

MANCHESTER, N.H. — expert Jeffery Stutzman explains the dangers of ransomware infections - Hundreds of thousands of computers across the globe are being affected by malware known as WannaCry.

Among the hardest hit systems are health networks, banks, telecommunications and government agencies. But cybersecurity experts said there are steps that people and organizations can take to avoid becoming victims.

The ransomware has hit more than 150 countries. Officials said WannaCry encrypts files on computers, forcing the owner to pay a ransom in bitcoin to get the files back.

"I think we're going to see more as people log into work this morning and tomorrow as they come into the office," said Jeff Stutzman, CEO of New Hampshire-based Wapack Labs.

Stutzman said ransomware is nothing new, but the speed with which this one struck beginning on Friday was unusual.

"Unbelievable -- the infrastructure that must have been set up to deploy this thing so quickly," he said.

Users of infected computers will see a red screen when they login. Stultzman said that anyone infected will probably have to pay the ransom, adding that the hackers can generally be trusted to deliver. Stutzman said his company paid $30,000 a few weeks ago on behalf of a client.

He said the key to stopping such attacks is prevention. There are three things that computer users should do immediately: Set computers to automatically update, get anti-virus software and back up computer hard drives externally.

"Pick a cloud provider," Stultzman said. "It doesn't matter which one. Don't map your network to it. Don't map your computer so it automatically does it."

Stutzman predicted that such attacks will only grow in number and sophistication.

"We've got botnets with thousands of computers attached," he said. "We've got these ransomware things with computers attached. How do we protect them when they come at us all at once?"

Stutzman, who serves on the governor's cybersecurity task force, said his company will set up a call center if needed, but it's currently offering solutions on its website.

Maritime & Port ISAO & Wapack Labs Advance Maritime & Port Critical Infrastructure Cyber Resilience

The Maritime and Port Security ISAO and Wapack Labs announce a collaborative partnership to advance real-time access to sector-specific cyber threat intelligence for Maritime & Port owners and operators and the supply chains that support them.

TITUSVILLE, Fla. - May 15, 2017 - PRLog -- The Maritime and Port Security Information Sharing and Analysis Organization (MPS-ISAO) and Wapack Labs announce today a collaborative partnership to advance real-time access to sector-specific cyber threat intelligence for Maritime & Port owners and operators and the supply chains that support them.

The MPS-ISAO, a non-profit organization, officially launched in May 2016, is dedicated to a mission of enabling and sustaining Maritime & Port cyber resilience. This is accomplished through the availability of MPS-ISAO real-time cyber threat intelligence including Maritime & Port community contributed information and multi-directional (cross-sector) information sharing and coordinated response working in collaboration with the U.S. Department of Homeland Security and the International Association of Certified ISAOs (IACI), and academic, technology and security strategic collaborative partners.

The partnership announced today with Wapack Labs expands access to sector-specific cyber intelligence, analysis of community data via strict information sharing protocols, and response capabilities for Maritime & Port stakeholders and their supply chains.

Deborah Kobza, MPS-ISAO Executive Director states, "The Maritime & Port sector is increasingly vulnerable and actively being attacked by a variety of adversaries including nation states, organized crime, hacktivists and insider threats focused on espionage, human trafficking, financial gain, supply chain disruption, identity and intellectual property theft, or to gain a competitive advantage. Many physical and cyber systems used in ports and maritime, such as navigation/GPS, physical security, communication, energy, environmental controls, industrial control systems (ICS), emergency controls, operations, cargo tracking, terminal operations, and cruise transportation, represent cyber attack targets. This partnership with Wapack Labs advances the capability of Maritime & Port stakeholders to move from a reactive to proactive cyber resilience stance."

Wapack Labs joined the MPS-ISAO's invitation-only webinar in March, "Interconnectedness in the Maritime Industry? First Let Me Tell You a Story.", to present their private research which identified a financially motivated cyber adversary who has compromised thousands of port and maritime organizations and over a million user accounts. The MPS-ISAO and Wapack Labs will use this cyber intelligence research as a jumping-off point to increase industry awareness and protection.

Christy Coffey, Director of Strategic Alliances, adds, "Wapack Labs is a perfectly suited partner for the MPS-ISAO. Their unique combination of cyber threat intelligence production with deep maritime and ports roots increases the level of early threat awareness that we can provide to our stakeholders. Wapack Labs have been tracking adversaries targeting this industry for a few years now, and so having them on our watch provides immediate gains."

Wapack Labs' bolsters the MPS-ISAO's ability to deliver Cyber Intelligence as a combination of industry-specific and personalized cyber threat intelligence, shared multi-directional sector and cross-sector information, advanced analytics, coordinated response, and training on topics of high interest. By participating in the MPS-ISAO, Maritime & Port stakeholders grow their understanding of vulnerabilities and risk so that they can proactively protect their organizations.

"We are excited to be working with the MPS-ISAO", said Jeffery Stutzman, a co-founder and CEO for Wapack Labs. It's imperative that we elevate cyber awareness in this important industry, and get ahead of threat actors. The MPS-ISAO - with the help of Wapack Labs' Cyber Threat Analysis Center (CTAC) are force multipliers - real game changers in Maritime and Port industry cybersecurity."

A 2016 report published by the U.S. Department of Homeland Security/Office of Cyber and Infrastructure Analysis (DHS/OCIA), "Consequences to Seaport Operations From Malicious Cyber Activity", states that a "cyber attack at a port or aboard a ship could result in lost cargo, port disruptions, and physical and environmental damage", and a disruption to U.S. ports can have a cascading affect to "Critical Manufacturing, Commercial Facilities, Food and Agriculture, Energy, Chemical, and Transportation Systems". This report includes a "Seaport Economics" section that details economic data points associated with sea trade.

About the MPS-ISAO: Headquartered at the Global Situational Awareness Center (GSAC) at NASA/Kennedy Space Center, the MPS-ISAO is private sector-led working in collaboration with government to advance Port and Maritime cyber resilience. The core mission to enable and sustain a safe, secure and resilient Maritime and Port Critical Infrastructure through security situational intelligence, bi-directional information sharing, coordinated response, and best practice adoption supported by role-based education. The MPS-ISAO is a founding member of the International Association of Certified ISAOs (IACI). More information at: www.mpsisao.org.

About Wapack Labs Corporation: Wapack Labs located in New Boston, NH is a privately held cyber intelligence company delivering in-depth strategic cyber threat activities, intelligence, analysis, reporting and indicators. Products are delivered through collaborative portals, private messaging and email, in multiple human readable and machine-to-machine form. Since 2011, Wapack Labs' have focused on tracking and profiling cyber adversaries, their tools, targets, attack methods, and delivering to subscribers in a way that can be quickly applied to the protection of computers, networks, and business operations. More information at: www.wapacklabs.com.

Media Contact
Maritime & Port ISAO (MPS-ISAO)
Deborah Kobza, CEO

Announcing the Wapack Labs & Cyber-Rx Strategic Partnership

April 19, 2017 (Silver Spring, MD) – Wapack Labs and CyberRx are announcing a strategic partnership to improve cybersecurity among small and medium-sized businesses (SMBs). Wapack Labs provides early warning cyber-threat detection, and cyber threat intelligence and analysis for nearly 7,000 organizations worldwide. The SMB offering comprises the companies’ software platforms in one portal and the outsourced services of both firms. The CyberRx software platform helps U.S. and international businesses to assess their cyber capabilities within the Cybersecurity Framework, developed by the National Institute of Standard and Technology (NIST) and the public sector.

Ola Sage, CyberRx CEO, and Jeff Stutzman, Wapack Labs CEO, will officially launched the SMB offering at the American Small Business Cybersecurity Xchange Spring Summit today, on April 19, 2017. “This strategic partnership with Wapack Labs is ground-breaking for SMBs who need access to affordable cybersecurity risk management solutions,” said Ms. Sage, who also chairs the national IT Sector Coordinating Council (IT SCC), which works in a public/private partnership with the Department of Homeland Security to address cybersecurity threats and risks to critical infrastructure.“ Mr. Stutzman, who spent many years working at the Department of Defense Cyber Crime Center added, “One of the reasons our partnership is timely is because many SMBs don’t have access to early warning cyber threat intelligence, so being able to combine our solution with CyberRx’s risk management platform now gives SMBs  information that they can act.”

The Future of Cyber Threat Management has Arrived!

Introducing the Cyber Threat Analysis Center  (CTAC 1.0) — cyber intelligence, easy analytics, no new infrastructure and affordable.

  • The SaaS model, gets you up and running fast. 
  • Monitor threats and cyber risk to you, your partners and suppliers.
  • No additional staff required.
  • Known tools = fast learning curve (if any).
  • Bring your own data.

Jerome Fath, CISO, Alion Science stated - “CTAC has amplified our cyber intelligence capability by allowing us to monitor threats to our own infrastructure, as well as our supply chain. This service enhances our intelligence program by removing the need for additional people watching screens,”

Jeff Stutzman, CEO Wapack Labs stated -
“Wapack Labs has made great strides in identifying threat intelligence sources not readily available to other companies and has been analyzing the resulting data since August 2011.  We are developing innovative tools that will allow incident responders to react more quickly to threats,”

Interested? We would love to show you how CTAC can efficiently and effectively make sense of incoming data and produce real intelligence quickly and conveniently. Sign up now! Request a Demonstration.


REPLAY AVAILABLE: The Big Broadcast - 2017 Cyber Attack Predictions

Did you have a chance to listen in on the Wapack Labs first Webcast of 2017? If you missed it or you want to listen to it again here is your chance. Will be available till January 31th, 2017 at 5:00 pm (Eastern).

Find out what top security professionals see coming in 2017. How will cyber criminals exploit your security vulnerabilities in your organization in 2017?  How can you best prepare to defend yourself?

Jason Healey, Senior Research Scholar in Cyber Conflict Studies, SIPA at Columbia University in the City of New York, moderated, and queried the senior Wapack Labs staff on their cyber security predictions for 2017.

Jeffery Stutzman Co-Founder CEO of Wapack Labs
Patrick Maroney Principle Engineer, Data Science & Analytics
Mike Tanji Managing Director
Liz Shirley Technical Director, Intelligence & Analysis

Massive Data Security Breaches A Problem Now More than Ever

In a world were technology is only growing more complicated faster and faster each day. And where consumers are putting more and more digital information out in the 'web' or the 'cloud' the risks have never been higher. This information is at constant risk which can leave consumers feeling helpless against the threat of hackers who are looking to sell their private information at top dollar.

Wapack Labs Announces Cyberwatch® API for Proactive Cyber Threat Intelligence.

Orlando, FL, September 12, 2016:  Wapack Labs, a cyber threat intelligence company, announced their new Cyberwatch® Application Program Interface (API) today at the Information Security Certification Consortium (ISC2) Congress in Orlando, FL. Companies will now be able to search Wapack Labs’ cyber intelligence collections directly through this bold, new application. That means users can identify and address security threats faster—including before they’re realized.

CLE Police Thank You Letter

This letter is to express our genuine commendation to Wapack Labs in your support of  the 2016 Republican National Convention, Division of Police intelligence collection efforts.

It has come to my attention that Wapack Labs provided forty-one (41) Situational Reports (SITREPs); two (2) RNC cyber security threat and vulnerability assessments; numerous verbal briefs and facilitated support to a covert social media operation. 

Wapack Labs: Protecting Client Businesses Worldwide Against Cyber Attacks

Wapack Labs: Protecting Client Businesses Worldwide Against Cyber Attacks

Wapack Labs Corporation identifies cyber threats before they become attacks. Founded in 2013, the company is a privately held cyber intelligence and threat analysis firm serving companies and organizations around the world. It does this by providing early threat detection through Internet surveillance operations, data gathering, and in-depth analysis of economic, financial and geopolitical issues. Intelligence is shared with clients through an array of packages that meet both their cyber needs and their bottom line.

Link to PDF of entire story.