A Review of the Best News of the Week on Cybersecurity Management & Strategy
Most Attacks Don’t Generate Security Alerts: Mandiant (SecurityWeek, May 05 2020)
An analysis conducted by FireEye’s Mandiant Security Validation team revealed that only a small percentage of attacks generate alerts and many intrusions are not detected by security solutions.
Apple’s Copyright Lawsuit Has Created a ‘Chilling Effect’ on Security Research (VICE, May 05 2020)
Security researchers are scared to buy, use, or even talk about the controversial iPhone emulation software Corellium, whose makers are in a legal battle with Apple.
Worldwide IT spending expected to decline 5.1% in 2020 (Help Net Security, May 06 2020)
Worldwide IT spending is now expected to decline 5.1% in constant currency terms during 2020 to $2.25 trillion, as the economic impact of the COVID-19 pandemic continues to drive down some categories of tech spending and short-term business investments, IDC reveals.
Filter Out the Noise
Since I started this curated newsletter in June 2017, I’ve clipped ~14,000 articles and narrowed them down into the best 20 per day & best 15 per week. This is my favorite way to cut through all the security marketing and hype. If you’re enjoying it, tell a friend. If you hate it, tell an enemy.
Thanks! – Lucas Samaras
DHS CISA Launches Site for Teleworking Security (Dark Reading, May 01 2020)
The new website is intended to be a one-stop source for information on securing teleworkers and their employers.
Consumers will opt for competitors after a single ransomware-related service disruption (Help Net Security, May 04 2020)
While most consumers are taking necessary security precautions to protect their online accounts, businesses may not be doing enough to protect their information – inadvertently driving sales to competitors that can, an Arcserve research reveals.
Uncle Sam to agencies: No encrypted DNS for you! (Naked Security – Sophos, May 04 2020)
The US federal government has been protecting its users by blocking malicious destinations for years, but it won’t let them take advantage of the latest protective measure in DNS – encryption – just yet.
Europe’s Largest Private Hospital Operator Fresenius Hit by Ransomware (Krebs on Security, May 06 2020)
“Fresenius, Europe’s largest private hospital operator and a major provider of dialysis products and services that are in such high demand thanks to the COVID-19 pandemic, has been hit in a ransomware cyber attack on its technology systems. The company said the incident has limited some of its operations, but that patient care continues.
New York City schools OK tailored Zoom platform for remote learning (SC Media, May 07 2020)
After privacy issues prompted the New York City Department of Education to transition away from Zoom as a telelearning option, the department has reversed that decision, noting that the teleconferencing company has created a safer platform for the city’s students.
Zoom acquires Keybase, a secure messaging and file-sharing service (Help Net Security, May 08 2020)
Zoom has acquired Keybase, a secure messaging and file-sharing service. The acquisition of this exceptional team of security and encryption engineers will accelerate Zoom’s plan to build end-to-end encryption that can reach current Zoom scalability.
Celebrity Data Stolen in Ransomware Attack on NYC Law Firm (Infosecurity Magazine, May 08 2020)
Cyber-criminals threaten to expose celebrities’ private data if law firm doesn’t pay ransom
Best Practices for Managing a Remote SOC (Dark Reading, May 01 2020)
Experts share what it takes to get your security analysts effectively countering threats from their home offices.
Only 41% of Cybersecurity Teams Can Securely Work Remotely (Infosecurity Magazine, May 01 2020)
Cybersecurity teams across the globe are unable to work from home safely
Most Malicious Coronavirus-Related Domains Located in U.S. (SecurityWeek, May 04 2020)
The United States has the highest number of malicious domains with names associated with the current coronavirus crisis, a new report reveals.
Spies Say Covid-19 Isn’t Manmade (Wired, May 02 2020)
Plus: A malicious GIF, Android malware, and more of the week’s top security news.
Denmark, Sweden, Germany, the Netherlands and France SIGINT Alliance (Schneier on Security, May 04 2020)
This paper describes a SIGINT and code-breaking alliance between Denmark, Sweden, Germany, the Netherlands and France called Maximator: Abstract: This article is first to report on the secret European five-partner sigint alliance Maximator that started in the late 1970s.
Cybersecurity Lobbying Spending Mounts as Privacy, Security Laws Take Shape (WSJ, May 05 2020)
The collective lobbying spending of 12 large publicly traded cybersecurity firms more than tripled between 2015 and 2019, according to an analysis of federal disclosures.
SMB Security Catches Up to Large Companies, Data Shows (Dark Reading, May 04 2020)
Small and midsize businesses face issues similar to those of large organizations and have updated security practices to respond with threat hunting, patch management, and dedicated personnel.
Average ransom payment up 33 percent in Q1, Sodinokibi and Ryuk top variants (SC Media, May 04 2020)
The ever industrious and forward-looking groups behind the majority of ransomware attacks essentially reinvented the business during the first quarter of 2020 developing new tools and methods that helped boost their success rate.
European Authorities Dismantle ‘InfinityBlack’ Hacker Group (SecurityWeek, May 05 2020)
European law enforcement authorities say they have dismantled a cybercrime group named “InfinityBlack” after arresting several individuals in Poland and Switzerland
LabCorp Shareholder Files Suit Over Double Data Breach (Infosecurity Magazine, May 08 2020)
Shareholder sues LabCorp to recoup share value losses following two data breaches