15 Bullet Friday – The Best Security News of the Week – 2020.05.29
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. What can merchants do to avoid falling victim to large-scale ATO attacks? (Help Net Security, May 21 2020) The most common approach to prevent ATOs is two-factor authentication for login attempts (62%), which can frustrate legitimate customers and increase cart abandonment. Many […]
15 Bullet Friday – The Best Security News of the Week – 2020.05.22
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. Chinese Hackers Target Air-Gapped Military Networks (SecurityWeek, May 15 2020) A threat actor believed to be operating out of China has been targeting physically isolated military networks in Taiwan and the Philippines, Trend Micro reports. 2. Attackers Routinely Use Older Vulnerabilities to […]
15 Bullet Friday – The Best Security News of the Week – 2020.05.15
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. US government plans to urge states to resist ‘high-risk’ internet voting (the Guardian, May 11 2020) Department of Homeland Security draft guidelines say practice allows attackers to alter votes and imperil integrity of elections 2. U.S. to Accuse China of Trying to […]
15 Bullet Friday – The Best Security News of the Week – 2020.05.08
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. LockBit Is the New Ransomware for Hire (Wired, May 03 2020) A recent infection, which managed to plunder a company’s network within hours, demonstrates why the malware has become so prevalent. 2. How Cybercriminals are Weathering COVID-19 (Krebs on Security, Apr 30 […]
15 Bullet Friday – The Best Security News of the Week – 2020.05.01
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. Intelligence Agencies Share Web Shell Detection Techniques (SecurityWeek, Apr 26 2020) The United Sates National Security Agency (NSA) and the Australian Signals Directorate (ASD) have issued a joint Cybersecurity Information Sheet (CSI) that provides details on vulnerabilities exploited by threat actors to […]
15 Bullet Friday – The Best Security News of the Week – 2020.04.24
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. Small Business Is Big Target for Ransomware (Dark Reading, Apr 16 2020) Small businesses are being hit by ransomware, and a majority are paying up to get their data back. 2. DHS Issues Alert for New North Korean Cybercrime (Dark Reading, Apr […]
15 Bullet Friday – The Best Security News of the Week – 2020.04.17
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. Emotat Malware Causes Physical Damage (Schneier on Security, Apr 06 2020) “Microsoft is reporting that an Emotat malware infection shut down a network by causing computers to overheat and then crash. The Emotet payload was delivered and executed on the systems of […]
15 Bullet Friday – The Best Security News of the Week – 2020.04.10
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. Zoom Meetings Aren’t End-to-End Encrypted, Despite Misleading Marketing (The Intercept, Apr 06 2020) The video conferencing service can access conversations on its platform. 2. ‘Zoombombing’ Becomes a Dangerous Organized Effort (The New York Times, Apr 06 2020) Zoom, the videoconferencing app, has […]
15 Bullet Friday – The Best Security News of the Week – 2020.04.03
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. New attack on home routers sends users to spoofed sites that push malware (Ars Technica, Mar 25 2020) Attack, which uses DNS hijacking, is the latest to capitalize on pandemic anxiety. 2. Windows code-execution zeroday is under active exploit, Microsoft warns (Ars […]
15 Bullet Friday – The Best Security News of the Week – 2020.03.27
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. Ransomware Gangs to Stop Attacking Health Orgs During Pandemic (BleepingComputer, Mar 23 2020) Some Ransomware operators have stated that they will no longer target health and medical organizations during the Coronavirus (COVID-19) pandemic. 2. How Microsoft Dismantled the Infamous Necurs Botnet (Wired, […]