[CDP-development] Cyber Disruption Discussion - Malicious RMM Tool Activity
Galusha, Kevin
KGalusha at clackamas.us
Tue Mar 17 08:03:40 PDT 2026
Hello Everyone,
There has been a lot of discussion about Remote Monitoring and Management (RMM) tools circulated by the TITAN Fusion Center and other cyber intelligence sources. I think this would be a valuable topic to cover during our April workgroup. I am seeking examples of what is currently being done to prevent the execution of these files, whether it involves specific awareness training, system policies, monitoring, EDR detection rules, or anything that is effective for your organization. If you are interested in presenting to the group, we can arrange that as well. I appreciate your collaboration.
Please respond to me directly- kgalusha at clackamas.us<mailto:kgalusha at clackamas.us>
Thanks,
Kevin Galusha, CISSP
Cybersecurity Architect
Clackamas County Technology Services
(503)723-4960
KGalusha at clackamas.us<mailto:KGalusha at clackamas.us>
www.clackamas.us<http://www.clackamas.us/>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://omls.oregon.gov/pipermail/cdp-development/attachments/20260317/e62b6bd8/attachment.html>
More information about the CDP-development
mailing list