15 Bullet Friday – The Best Security News of the Week – 2021.01.08
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. Russia’s SolarWinds Attack (Schneier on Security, Dec 28 2020) Espionage is internationally allowed in peacetime. The problem is that both espionage and cyberattacks require the same computer and network intrusions, and the difference is only a few keystrokes. And since this Russian […]
15 Bullet Friday – The Best Security News of the Week – 2020.12.18
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. U.S. Treasury, Commerce Depts. Hacked Through SolarWinds Compromise (Krebs on Security, Dec 14 2020) “Communications at the U.S. Treasury and Commerce Departments were reportedly compromised by a supply chain attack on SolarWinds, a security vendor that helps the federal government and a […]
15 Bullet Friday – The Best Security News of the Week – 2020.12.11
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. FBI: Block Email Forwarding to Stop BEC Attackers (Infosecurity Magazine, Dec 02 2020) Feds warn of visibility challenge for IT administrators 2. Mac users warned of more Ocean Lotus malware targeted attacks (Graham Cluley, Dec 02 2020) Security researchers have warned of […]
15 Bullet Friday – The Best Security News of the Week – 2020.12.04
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. FBI warns of threat actors spoofing Bureau domains, email accounts (WeLiveSecurity, Nov 27 2020) The U.S. law enforcement agency shares a sampling of more than 90 spoofed FBI-related domains registered recently 2. Latest Version of TrickBot Employs Clever New Obfuscation Trick (Dark […]
15 Bullet Friday – The Best Security News of the Week – 2020.11.27
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. Microsoft’s Making a Secure PC Chip—With Intel and AMD’s Help (Wired, Nov 17 2020) The Pluton security processor will give the software giant an even more prominent role in locking down Windows hardware. 2. Symantec Reports on Cicada APT Attacks against Japan […]
15 Bullet Friday – The Best Security News of the Week – 2020.11.20
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. macOS Big Sur 11.0.1 Patches 60 Vulnerabilities (SecurityWeek, Nov 16 2020) The first update released by Apple for macOS Big Sur 11.0 addresses 60 vulnerabilities affecting various components of the operating system. 2. Major ransomware strain jumps from Windows to Linux (SC […]
15 Bullet Friday – The Best Security News of the Week – 2020.11.13
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. Emotet and TrickBot Top the Malware Charts Yet Again (Infosecurity Magazine, Nov 09 2020) Check Point points to resulting surge in ransomware infections 2. Detecting Phishing Emails (Schneier on Security, Nov 06 2020) “Once they find such information, then they move to […]
15 Bullet Friday – The Best Security News of the Week – 2020.11.06
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. FBI, DHS, HHS Warn of Imminent, Credible Ransomware Threat Against U.S. Hospitals (Krebs on Security, Oct 28 2020) “On Monday, Oct. 27, KrebsOnSecurity began following up on a tip from a reliable source that an aggressive Russian cybercriminal gang known for deploying […]
15 Bullet Friday – The Best Security News of the Week – 2020.10.30
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. NSA Reveals the Top 25 Vulnerabilities Exploited by Chinese Nation-State Hackers (Dark Reading, Oct 20 2020) Officials urge organizations to patch the vulnerabilities most commonly scanned for, and exploited by, Chinese attackers. 2. Microsoft, MITRE Release Adversarial Machine Learning Threat Matrix (SecurityWeek, […]
15 Bullet Friday – The Best Security News of the Week – 2020.10.23
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. TrickBot Botnet Survives Takedown Attempt (SecurityWeek, Oct 15 2020) The TrickBot botnet appears to have resumed normal operations days after Microsoft announced that it managed to take it down using legal means. 2. US Cyber Command Urges Users to Patch New ‘Ping […]