A Review of the Best News of the Week on Cloud Security, DevOps, AppSec Top 10 blog posts of 2020 (AWS Security Blog, Feb 09 2021) The top 10 posts of 2020 Use AWS Lambda authorizers with a third-party identity provider to secure Amazon API Gateway REST APIs How to
A Review of the Best News of the Week on AI, IoT, & Mobile Security Google considering an iOS-style anti-tracking feature for Android (Ars Technica, Feb 05 2021) Android could get tracking controls after “seeking” from ad companies. NoxPlayer Android Emulator Supply-Chain Attack (Schneier on Security, Feb 08 2021) “It
A Review of the Best News of the Week on Cyber Threats & Defense Lack of visibility into remote endpoints leaves companies vulnerable to ransomware (Help Net Security, Feb 03 2021) Illumio released findings on visibility and security practices for remote endpoints, revealing how vulnerable organizations are to ransomware propagating
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. Pay-or-Get-Breached Ransomware Schemes Take Off (Dark Reading, Jan 26 2021) In 2020, ransomware attackers moved quickly to adopt so-called “double extortion” schemes, with more than 550 incidents in the fourth quarter alone. 2. #RSAC365: #COVID19 Fundamentally Altered
A Review of the Best News of the Week on Cybersecurity Management & Strategy Another SolarWinds Orion Hack (Schneier on Security, Feb 04 2021) “At the same time the Russians were using a backdoored SolarWinds update to attack networks worldwide, another threat actor — believed to be Chinese in origin
A Review of the Best News of the Week on Identity Management & Web Fraud Barclays: 2020 the Highest Year on Record for Scams (Infosecurity Magazine, Feb 02 2021) Over half of Brits are too embarrassed to report falling victim to scams U.K. Arrest in ‘SMS Bandits’ Phishing Service (Krebs
A Review of the Best News of the Week on Cloud Security, DevOps, AppSec 1/3 of businesses have cloud budget overruns of up to 40% (Help Net Security, Feb 02 2021) More than one-third of businesses have cloud budget overruns of up to 40 percent, and one in 12 companies
A Review of the Best News of the Week on AI, IoT, & Mobile Security UScellular Breach Allowed Hackers to Port Customer Phone Numbers (SecurityWeek, Jan 29 2021) Chicago-based wireless carrier UScellular started informing customers last week that their personal information may have been accessed and their phone numbers ported
A Review of the Best News of the Week on Cyber Threats & Defense Pay-or-Get-Breached Ransomware Schemes Take Off (Dark Reading, Jan 26 2021) In 2020, ransomware attackers moved quickly to adopt so-called “double extortion” schemes, with more than 550 incidents in the fourth quarter alone. #RSAC365: #COVID19 Fundamentally Altered