A Review of the Best News of the Week on Cloud Security, DevOps, AppSec Zoom Removes Code That Sends Data to Facebook (VICE, Mar 30 2020) The change comes after Motherboard found the Zoom iOS app was sending analytics information to Facebook when users opened the app. How to Secure
A Review of the Best News of the Week on AI, IoT, & Mobile Security Saudis suspected of phone spying campaign in US (The Guardian, Mar 29 2020) Whistleblower’s data suggests millions of tracking requests sent over four-month period Zoom iOS App Sends Data to Facebook Even if You Don’t
A Review of the Best News of the Week on Cyber Threats & Defense New attack on home routers sends users to spoofed sites that push malware (Ars Technica, Mar 25 2020) Attack, which uses DNS hijacking, is the latest to capitalize on pandemic anxiety. Windows code-execution zeroday is under
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. Ransomware Gangs to Stop Attacking Health Orgs During Pandemic (BleepingComputer, Mar 23 2020) Some Ransomware operators have stated that they will no longer target health and medical organizations during the Coronavirus (COVID-19) pandemic. 2. How Microsoft Dismantled
A Review of the Best News of the Week on Cybersecurity Management & Strategy Elite hackers target WHO as coronavirus cyberattacks spike (Reuters, Mar 24 2020) WHO Chief Information Security Officer Flavio Aggio said the identity of the hackers was unclear and the effort was unsuccessful. What’s preventing organizations from
A Review of the Best News of the Week on Identity Management & Web Fraud Smartphone data reveal which Americans are social distancing (Wash. Post, Mar 24 2020) D.C. gets an ‘A’ while Wyoming earns an ‘F’ for following coronavirus stay-at-home advice, based on the locations of tens of millions
A Review of the Best News of the Week on Cloud Security, DevOps, AppSec Every presidential campaign website has suspicious 3rd-party code (SC Media, Mar 25 2020) An analysis of 11 presidential campaign websites performed last September and again in December found multiple instances of potentially risky third-party code, unwanted
A Review of the Best News of the Week on AI, IoT, & Mobile Security Zxyel Flaw Powers New Mirai IoT Botnet Strain (Krebs on Security, Mar 20 2020) “In February, hardware maker Zyxel fixed a zero-day vulnerability in its routers and VPN firewall products after KrebsOnSecurity told the company
A Review of the Best News of the Week on Cyber Threats & Defense Ransomware Gangs to Stop Attacking Health Orgs During Pandemic (BleepingComputer, Mar 23 2020) Some Ransomware operators have stated that they will no longer target health and medical organizations during the Coronavirus (COVID-19) pandemic. How Microsoft Dismantled