15 Bullet Friday – The Best Security News of the Week – 2020.03.20
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. A New Wormable Windows Vulnerability Has No Patch in Sight (Wired, Mar 12 2020) The flaw has the potential to unleash the kind of attacks that allowed WannaCry and NotPetya to cripple business networks around the world. 2. Google Releases Tool to […]
15 Bullet Friday – The Best Security News of the Week – 2020.03.13
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. Cisco fixes three high-level bugs, but a fourth remains unpatched (SC Media, Mar 06 2020) The flaw with no current fix is CVE-2020-3155: a validation error in the SSL implementation of Cisco Intelligent Proximity, a solution that helps laptops, smartphones and other […]
15 Bullet Friday – The Best Security News of the Week – 2020.03.06
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. A Flaw in Billions of Wi-Fi Chips Let Attackers Decrypt Data (Wired, Feb 27 2020) Affected devices include iPhones, iPads, Macs, Amazon Echos and Kindles, Android devices, and various Wi-Fi routers. 2. Malicious Documents Emerging Trends: A Gmail Perspective (Elie Bursztein’s – […]
15 Bullet Friday – The Best Security News of the Week – 2020.02.28
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. FireEye Spotted Over 500 New Malware Families in 2019 (SecurityWeek, Feb 21 2020) FireEye’s incident response division Mandiant observed more than 500 new malware families last year, the company revealed in its M-Trends 2020 report released this week. 2. Iranian Hackers Backdoored […]
15 Bullet Friday – The Best Security News of the Week – 2020.02.21
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. USCYBERCOM Shares More North Korean Malware Samples (SecurityWeek, Feb 15 2020) The U.S. Cyber Command (USCYBERCOM) has uploaded new malware samples to VirusTotal, all of which the Command has attributed to the North Korea-linked threat group Lazarus. 2. Emotet: Crimeware you need […]
15 Bullet Friday – The Best Security News of the Week – 2020.02.14
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. Why you can’t bank on backups to fight ransomware anymore (Ars Technica, Feb 07 2020) Ransomware operators stealing data before they encrypt means backups are not enough. 2. Google Chrome to start blocking downloads served via HTTP (Naked Security – Sophos, Feb […]
15 Bullet Friday – The Best Security News of the Week – 2020.02.07
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. Account protections — A Google Perspective (Elie Bursztein, Jan 30 2020) “This talk provides a data driven analysis of how accounts get compromised. Then it provides an in-depth overview of the defense we found effective at Google to protect users from account […]
15 Bullet Friday – The Best Security News of the Week – 2020.01.31
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. Zero-Day IE Bug is Being Exploited in the Wild (Infosecurity Magazine, Jan 21 2020) CISA and Microsoft sound the alarm but no patch as yet 2. DHS Warns of Increasing Emotet Risk (Dark Reading, Jan 23 2020) Emotet is considered one of […]
15 Bullet Friday – The Best Security News of the Week – 2020.01.24
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. Microsoft Patches Windows Vuln Discovered by the NSA (Dark Reading, Jan 14 2020) The National Security Agency is publicly acknowledged for its finding and reporting of CVE-2020-0601, marking the start of what it says is a new approach to security. 2. 52 […]
15 Bullet Friday – The Best Security News of the Week – 2020.01.17
The Top 15 Security Posts – Vetted & Curated *Threats & Defense* 1. How 2019’s Worst Corporate Hacks Could Have Been Prevented (Infosecurity Magazine, Jan 13 2020) The majority of breaches can be avoided. User log-in credentials, customer databases, corporate emails, sensitive enterprise documents, medical and tax information are just a few examples of data […]