






Study with the several resources on Docsity
Earn points by helping other students or get them with a premium plan
Prepare for your exams
Study with the several resources on Docsity
Earn points to download
Earn points by helping other students or get them with a premium plan
The importance of vulnerability management for transportation sector businesses, particularly in light of increasing it integration and the threat of ransomware attacks. The document recommends nessus as a vulnerability scanning tool and provides details on the cost and implementation process. Real-world examples of ransomware attacks on logistics companies are also included.
Typology: Exams
1 / 10
This page cannot be seen from the preview
Don't miss anything!







AGENDA
2: OUR SECURITY POSTURE
big threat.
attack.
▪ (^) NotPetya ransomware attacks caused logistics companies billions of dollars [1]. ▪ (^) FedEx and Maersk each lost $300 million from the ransomware [2].
3: OUR VM PROCESS
4B: THE ASK
systems.
▪ (^) $2960 [3] ▪ (^) At least 2 technicians (System Admin and Network Admin) ▪ (^) External pen-testing company on retainer ▪ (^) No high threat level vulnerabilities
risks
is the first step to creating a strong cybersecurity system.
[1] A. Greenberg, "The Untold Story of NotPetya, the Most Devastating Cyberattack in History", Wired , 2020. [Online]. Available: https://www.wired.com/story/notpetya-cyberattack-ukraine-russia-code-crashed-the-world/. [Accessed: 6 - October-2022]. [2] Slaby, James R. "Ransomware Still Threatens The Transportation & Logistics Industry". Acronis.Com, 2018, https://www.acronis.com/en- eu/articles/ransomware-logistics/#:~:text=The%20recent %20wave%20of%20crippling,players%20to%20reevaluate%20those %20priorities.&text=FedEx %20clocked%20its%20operating%20losses,TNT%20systems%20by%20%2475M. [3] “Nessus Pro”, Tenable.com, 2020. [Online]. Available: https://www.tenable.com/products/nessus. [Accessed: 6 - October-2022]. [4] Bagyalakshmi, G., et al. "Network vulnerability analysis on brain signal/image databases using Nmap and Wireshark tools." IEEE Access 6 (2018): 57144-57151. [5] Rahalkar, Sagar. "OpenVAS." Quick Start Guide to Penetration Testing. Apress, Berkeley, CA, 2019. 47 - 71. [6] Foreman, Park. Vulnerability management. CRC Press, 2019.Palmaers, Tom. "Implementing a vulnerability management process." SANS Institute Reading Room (2013). [7] Nessus. "Getting Started (Nessus Compliance Checks)". Docs.Tenable.Com, 2020, https://docs.tenable.com/nessus/compliancechecksreference/Content/GettingStarted.htm. [Accessed: 6 - October-2022]. 10