The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. Detection capabilities improve, but ransomware surges on (Help Net Security, Apr 14 2021) A FireEye report outlines critical details on trending attacker techniques and malware, the proliferation of multifaceted extortion and ransomware, preparing for expected UNC2452 /
A Review of the Best News of the Week on Cybersecurity Management & Strategy Business Email Compromise Costs Businesses More Than Ransomware (Dark Reading, Apr 21 2021) Ransomware gets the headlines, but business paid out $1.8 billion last year to resolve BEC issues, according to an FBI report. REvil seeks
A Review of the Best News of the Week on Identity Management & Web Fraud A New Facebook Bug Exposes Millions of Email Addresses (Wired, Apr 22 2021) A recently discovered vulnerability discloses user email addresses even when they’re set to private. Account protections – A Google Perspective (Elie on
A Review of the Best News of the Week on Cloud Security, DevOps, AppSec Auto Insurance Giant GEICO Discloses Data Breach (SecurityWeek, Apr 20 2021) American auto insurance provider GEICO has disclosed a cyber-incident that resulted in driver’s license numbers being compromised. Infection Monkey: Open source tool allows zero trust
A Review of the Best News of the Week on AI, IoT, & Mobile Security How the FBI Got Into the San Bernardino Shooter’s iPhone (Wired, Apr 17 2021) This week, The Washington Post revealed that the company that sold the tool isn’t one of the better-known players, but instead
A Review of the Best News of the Week on Cyber Threats & Defense Detection capabilities improve, but ransomware surges on (Help Net Security, Apr 14 2021) A FireEye report outlines critical details on trending attacker techniques and malware, the proliferation of multifaceted extortion and ransomware, preparing for expected UNC2452
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. How a VPN vulnerability allowed ransomware to disrupt two manufacturing plants (Ars Technica, Apr 07 2021) The ransomware, known as Cring, came to public attention in a January blog post. It takes hold of networks by exploiting
A Review of the Best News of the Week on Cybersecurity Management & Strategy FBI removes web shells from hacked Microsoft Exchange servers (Help Net Security, Apr 14 2021) Authorities have executed a court-authorized operation to copy and remove malicious web shells from hundreds of vulnerable on-premises versions of Microsoft
A Review of the Best News of the Week on Identity Management & Web Fraud LinkedIn 500M profiles, maintains incident was not a breach (SC Media, Apr 09 2021) LinkedIn has become one of the most impersonated brands when it comes to phishing, and having access to such a treasure