IT Security News Daily Summary 2020-03-28

• Hackers sending malware infected USBs with Best Buy Gift Cards

• Europol: Criminals Exploit Virus Crisis as Fresh Opportunity

• Talking Mental Health in a Remote World with Greg Keller and Brad Feld

• Tekya Malware Targets 1 Million Android Users Through Malicious Apps On Play Store

• Microsoft’s Windows 10 Dockable ‘News Bar’ Now In Beta

• “Operation Poisoned News” infecting iPhones with LightSpy spyware

• HR & IT: Coordinated Provisioning

• Ashley Madison: Affairs in the time of coronavirus

• 2020 iPad Pro Teardown Provides Closer Look at LiDAR Scanner and Confirms Incremental Update

• Russian Security Services Track Down Colossal Credit Card Fraud Ring

• Critical buffer overflow in CODESYS allows remote code execution

• New York May Be Weeks Away From Peak Of Coronavirus

• Apple inserts a laughable trick into its new privacy policy

• Top Stories: Hands-On With 2020 iPad Pro and MacBook Air, iOS and PadOS 13.4 Released, iPhone 12 Delay?

• Chinese Hacking Surges Amid Coronavirus Crisis

• Covid19 Domain Classifier, (Sat, Mar 28th)

• Hackers target zero-day flaws in enterprise Draytek network devices

• Zoom iOS App Shares Data With Facebook Even For Non-FB Users

• AMD admits hacker stole source code files related to its GPUs

• Operation Poisoned News – Hackers Deliver Malware Targeting iOS Users Using Local News Links

• Kipling on COVID-19 in America: “You Can Not Hustle the East”

• A mysterious hacker group is eavesdropping on corporate email and FTP traffic

• Hackers Hijack Home Routers & Change The DNS Settings to Implant Infostealer Malware

• How a Passive DNS Database Can Help Improve Cyber Resilience

• Zoom Updates iOS App to Stop Sending Data to Facebook

• Examining Potential Election Vulnerabilities – Are They Avoidable?

• COVID-19: Business and Brand Protection Response

• Threat Roundup for March 20 to March 27

• How To Keep Your Router And WiFi Safe From Hackers

• Avast Speaks at Virtual Digital Sanity Summit | Avast

• EFF Asks California AG to Close Loopholes, Respect “Do Not Track” With Regulations

• DOD official: ‘Adversarial capital’ threatens industrial base

• Members of Congress Once Again Urge ICANN to Save Dot Org

• DOD asks contractors to maximize telework capabilities

• OPM launches plan to help feds find COVID-19 response work details

• IT Security News Daily Summary 2020-03-27

• CASB+Is Essential Infrastructure for The Cloud Mobile Digital Transformation

• No, Microsoft isn’t killing the Control Panel off just yet

• FTC Warns VoIP Providers to Stop Facilitating Coronavirus Scams

• Social Engineering Based on Stimulus Bill and COVID-19 Financial
  Compensation Schemes Expected to Grow in Coming Weeks

• How to prevent buffer overflow attacks

• Demystifying Network Investigations with Packet Data

• The Week in Ransomware – March 27th 2020 – Don’t Attack Hospitals!

• Network of fake QR code generators will steal your Bitcoin

• Trump Can’t Reopen the Country Over State Objections

• Yeah, that Zoom app you’re trusting with work chatter? It lives with ‘vampires feeding on the blood of human data’

• US Small Business Administration Grants Used as Phishing Bait

• Now More Than Ever, Prisoners Should Have Some Access to Social Media

• Friday Squid Blogging: Squid Can Edit Their Own Genome

• Hackers Exploit Zero-Day Bugs in Draytek Devices to Target Enterprise Networks

• Cyberinsurance carrier Chubb investigating possible data breach

• Apple Offering Curated Collections of TV Shows, Podcasts, Books, Movies and More Aimed at Families

• How to create a Kubernetes security policy

• SANS@MIC Schedule

• Coronavirus: Huawei Launches Flagship P40 Smartphone During Pandemic

• Apple Turns the Anti-Ad Thumbscrews With Safari Cookie Blocking

• Virgin Media Could Pay GB pound 4.5B for Leak Affecting 900,000 Customers

• Coronavirus: Bill Gates Urges Total Shutdown To Halt Covid-19 Spread

• Don’t let cyber insurance distract you from your IT strategy

• 2020-03-27 – price_request_9830.doc pushes IcedID (Bokbot)

• Google Sees Drop in Government-Backed Phishing Attempts

• Prisma Cloud Native Security Platform Embeds Security into DevOps Lifecycle

• SolarWinds Security Event Manager Competes in 2020 ‘ASTORS’ Awards

• Secure Connectivity is The Only Connectivity

• Cost Imposition Is the Point: Understanding U.S. Cyber Operations and the Strategy Behind Achieving Effects

• How to listen to port traffic on a Linux server

• Malicious USB Drive Hides Behind Gift Card Lure

• Chris Lattner Talks Swift, WWDC and More on This Week’s ATP Podcast

• Cyber News Rundown: WHO Under Cyberattack

• Zero-Day Vulnerabilities In LILIN CCTV Cameras Under Active Exploit – Patch Now!

• AI Security Alliance urges clarity for buying AI security tools

• How to protect remote works from the coronavirus crime wave

• FBI: Hackers Sending Malicious USB Drives & Teddy Bears via USPS

• States of shock: Recovering our tech economy after COVID-19

• GSA hangs tough on EIS timeline

• Cybercriminals attack KEEN shoe drive for people affected by coronavirus pandemic

• Modernization of IT Security

• AI Weekly: Coronavirus prompts call to service for ML talent

• Google Advises Against Disabling Sites During the Pandemic

• Help us classify Covid19 related domains https://isc.sans.edu/covidclassifier.html (login required), (Fri, Mar 27th)

• Apple Watch Series 6 Could Feature Touch ID Fingerprint Sensor, Pulse Oximetry and Sleep Tracking Support

• Quantum entanglement breakthrough could boost encryption, secure communications

• 10 identity management metrics that matter

• Best password managers for business in 2020: 1Password, Keeper, LastPass, and more

• Domain Registrars Take Action Against Fraudulent COVID-19 Websites

• MacRumors Giveaway: Win an Explorer 1000 Portable Power Station From Jackery

• GENERALI GLOBAL ASSISTANCE AND IDENTITY THEFT RESOURCE CENTER PUBLISH WHITE PAPER ON SENIOR & MILLENNIAL DIGITAL DATA HABITS

• Dark web hosting firm quits after hackers delete its database

• 0patch releases free unofficial patches for Windows 0days exploited in the wild

• EFF, ACLU & CDT Argue Five Months of Warrantless Covert 24/7 Video Surveillance Violates Fourth Amendment

• The Wild, Wild West(world) of Cybersecurity

• API Security Weekly: Issue #76

• Deals: Nomad Offering 50% Off Kevlar Lightning and USB-C Cables With Purchase of Wireless Charging Base Station

• Beijing Turns to Public Diplomacy and Messaging Campaigns, as the Coronavirus Spreads Worldwide

• Sensitive Data Discovery for Compliance

• Union: IRS planning workforce evacuation order

• Examining Potential Election Vulnerabilities: Are They Avoidable?

• Tech Can Help With Quality of Life for Elders | Avast

• Russian Hackers Exploited Windows Flaws in Attacks on European Firms

• Senator Urges Vendors to Secure Networking Devices Amid COVID-19 Outbreak

• Keeping your cloud deployments secure during challenging times

• Google Bans Infowars Android App Over Coronavirus Claims

• How to spot a fake app?

• Defense in Depth at the Identity Perimeter to Mitigate Coronavirus Social Engineering Risk

• Russian-Based Online Platform Taken Down By the FBI

• Race Condition Vulnerabilities

• Latest Research Reports Prices of Your Documents on the Dark Web

• US Plans to Dig Up the Dead for New Cyber-Defense Building

• Benchmarking the State of the CISO in 2020

• LORCA Launches Open Call for Fifth Cohort of Cyber-Scaleups

• Apple Launches COVID-19 Website and App With Screening Tool and Resources

• Purported Brute-Force Attack Aims at Linksys Routers as More People Work Remotely

• [Webinar] How Open Source Made Me a Better Manager

• Apple Launches COVID-19 Website and App With Screening Tool and Other Resources

• Maze Ransomware Group Adds Cyber-Insurance Firm Chubb to Their Victim List

• Apple Releases Security Updates

• WordPress Sites Infected by Modified Coronavirus-Themed Plugins

• Threat Actors Spreading Dangerous “Google Chrome Update”

• Adobe Releases Security Update for Creative Cloud Desktop Application

• Google tracks down 40000 State-funded Cyber Threats

• Managed IT Security for Healthcare

• Week in security with Tony Anscombe

• 5 Security Tips for your AWS Account

• How to enable 2FA for groups in Nextcloud

• Skill Levels in Digital Security

• Apple Unpatched VPN Bypass Bug Impacts iOS 13, Warn Researchers

• Google issued 40,000 alerts of State-Sponsored attacks in 2019

• Why NetApp is the Right Partner for your SAP HANA Transition

• CISA practice questions to prep for the exam

• Why Microsoft’s Office 365 has become an all-access pass for phishers to exploit

• FBI Issues Child Sextortion Warning Amid School Closures

• CISA exam preparation requires learning ethics, standards, new vocab

• Micropatches block exploitation of Windows zero-days under attack

• 37.9% of Untrained End Users Will Fail a Phishing Test According to KnowBe4

• How to sync Firefox containers across devices

• 7600 Sites Downed After Dark Web Hosting Provider Got Hacked Again

• A cyberattack paralyzes coronavirus testing center

• The Great Security Survivor: Experts on Ransomware

• Actively Exploited Windows Font Parsing Bugs Get Temporary Fix

• Cyber crime marketplace DEER.IO seized, admin arrested from JFK airport

• The National Commission on Public Service Is Right to Endorse Women’s Draft Registration

• Public Cloud – 4 Subtle Differences with Significant Security Concerns

• Cybersecurity insurance firm Chubb investigates its own ransomware attack

• This Week in Security News: Hong Kong Users Targeted with Mobile Malware via Local News Links and Hackers Hijack Routers to Spread Malware Via Coronavirus Apps

• Android apps are snooping on your installed software

• Scammers Target U.S. Troops with Fake COVID-19 Tests

• GitHub Paid Out Over $1 Million in Bug Bounties

• Hackers Leak FSB Plan for IoT Botnet | Avast

• Cryptocurrency Laundering Is a National Security Risk

• Firefox 76 will have option to enforce HTTPS-only connections

• White Hats, Security Firms Step Up to Tackle COVID-19 Scams

• Windows Font Parsing Zero Days Get Temporary Fix

• When You Should Blog and When You Should Tweet

• What happens when the global supply chain breaks?

• Coronavirus and home working: Cyber criminals shift focus to target remote workers

• Buffer Overflow Vulnerabilities

• Deals: Huge Refurbished iPhone Sale Discounts iPhone 7, 8, X, XR, and XS (From $120)

• This Is Not a Test: APT41 Initiates Global Intrusion Campaign Using
  Multiple Exploits

• Coronavirus Cybercrime

• The M140i project post – Part 1

• Doctrinal Confusion and Cultural Dysfunction in the Pentagon Over Information and Cyber Operations

• Websites of U.S. Presidential Candidates Pose Security, Privacy Risks

• HP unveils advanced security for remote workers — and shows how to disinfect your laptop

• Virgin Media Facing Huge Compensation Bill Over Data Breach

• AT&T Cybersecurity’s Bindu Sundaresan On The Emerging Threats Targeting Telemedicine And Healthcare

• Phishing Threats Increase with COVID 19 Outbreak

• Coronavirus Pandemic Highlights Government Cyber Vulnerabilities

• Experts Insight On Watford Community Housing (WCH) Data Breach

• Chinese Hacker Group APT41 Uses Recent Exploits To Target Companies Worldwide

• How to Enable or Disable Apple Music’s New Release Alerts in iOS

• Data Deposit Box Exposes 270K Users’ Private Information – Expert Comments

• A Twitch Streamer Is Exposing Coronavirus Scams Live

• Hackers Tried To Break Into The World Health Organisation – Expert Comments

• UK Government Uses Zoom Despite MoD Security Concerns

• Thousands of Dark Web sites deleted in attack on free hosting service

• Tupperware Website Compromised with Credit Card Skimmer

• 3 Best Ways to Track a Cell Phone Location

• Coronavirus: Chinese Hackers APT41 Seek Exploits Amid Pandemic

• SACON 2020 – Evolution Of AI : Past, Present, Future (Dr. Monojit Choudhury)

• Cybercriminal group mails malicious USB dongles to targeted companies

• FBI takes down hacker platform Deer.io

• Fighting cybercriminals is an ongoing battle

• Vulnerability with VLC for iOS Allows Attackers to Steal Data from Storage

• Story of Gus Weiss

• Data allegedly stolen in ransomware attack on cybersecurity insurance provider Chubb

• InfoSec News Signal Boost – Request for Resumes

• Apple releases macOS 10.15.4, watchOS 6.2, and iOS, iPadOS and tvOS 13.4

• Hackers Used Local News Sites to Install Spyware On iPhones

• People have started to read more about security !

• How to Turn Off Apple Music New Release Alerts in iOS

• Google Play’s malicious app problem infects 1.7 million more devices

• Unofficial Patches Released for Exploited Windows Font Processing Flaws

• InfoSec News Signal Boost – March 27, 2020

• Amazon’s New ‘Essential Items’ Policy Is Devastating Sellers

• How to Prioritize Your Mental Health While Self-Isolating

• Government-backed cyber attackers increasingly targeting journalists

• Review: Apple iPad Pro (2020)

• Russian Defence Minister says Pro-Western Activists Trying to Infiltrate Military Facilities using Media Laws as a cover

• Phishing emails up 667% in les than a month

• Chubb data stolen by Maze ransomware

• Why Adversarial Examples Are Such a Dangerous Threat to Deep Learning

• Cybersecurity Experts On Medical And Military Contractor Kimchuk Hit By Data-stealing Ransomware

• Three customers targeted by phishing attack

• Hospitals still targeted by ransomware during Coronavirus pandemic

• A missing authorization check in WordPre WPvivid plugin that can lead to the exposure of the database and all files

• Hijacked Twitter Accounts Used To Advertise Face Masks

• DCMS Cyber Security Breaches Survey – Commentary

• 40,000 State-Sponsored Attacks in 2019 according to Google

• 5G without governance is risky business

• [Panel Discussion] First 90 Days Plan After Joining As a CISO

• New financially motivated attacks in Western Europe traced to Russian-speaking threat actors

• Sources in Apple’s Supply Chain Dismiss Reports of iPhone 12 Launch Delay

• #COVID19 News Links Hijacked With iOS Spyware

• Zeek and Jitsi: 2 open source projects we need now

• Taiwan PCB Makers in Apple’s Supply Chain Dismiss Reports of iPhone 12 Launch Delay

• Malicious JavaScript Dropping Payload in the Registry, (Fri, Mar 27th)

• Russian-Speaking Hackers Attack Pharma, Manufacturing Companies in Europe

• Cyber Security a Lenders Greatest Risk

• Ryuk Ransomware operators continue to target hospitals during COVID19 outbreak

• Tekya Clicker Malware Hides in 56 Apps that Downloaded 1 Million Times Worldwide From Google Play

• Blocking China can lead to fragmented 5G market

• Across-the-board increase in DDoS attacks of all sizes

• Why Traditional Security Is Failing Us, Part 2

• Weekly Update 184

• Panel Discussion on the topic of First 90 Days Plan After Joining As a CISO

• Unpatched “VPN Bypass” Vulnerability in Apple iOS Let Blocks VPN to Pass The Encrypted Traffic

• Elements of Omni Channel User Experience

• Following Putin Order, FSB Cracks Down on Russian Credit Card Marketplaces

• French government announces $4.3 billion plan to support startups

• Maine Suit Challenges Privacy Regulation on First Amendment Grounds

• How criminals profit from the COVID-19 pandemic

• Data Stealing Ransomware hits Chubb Insurance and Kimchuk

• Four ways to prevent data breaches

• The Influenza, 1890

• Hackers: Fact vs. Fiction

• While many migrate security tools to the cloud, concerns remain

• Researchers use AI and create early warning system to identify disinformation online

• Most Important Cyber Threat Intelligence Tools List For Hackers and Security Professionals 2020

• Do you have the GRIT to be a cybersecurity consultant?

• ISC Stormcast For Friday, March 27th 2020 https://isc.sans.edu/podcastdetail.html?id=6928, (Fri, Mar 27th)

• Spot Cloud Analyzer: Managing performance, availability and cost of cloud infrastructure

• Booz Allen analyzed 200+ Russian hacking operations to better understand their tactics

• Kuo: Apple to Launch Several Macs With Arm-Based Processors in 2021, USB4 Support Coming to Macs in 2022

• Team coverage: COVID-19 and the federal workforce

• ACSC issues warning around coronavirus-themed malicious cyber activity

• A12Z Bionic Chip in iPad Pro Allegedly a Renamed A12X With Extra GPU Core Enabled

• InterVision collaborates with AWS to deliver new enterprise cloud solution

• Working from Home Cybersecurity Guidance

• Keeping Tabs on Remote Systems

• Gigamon appoints Andrew R. Harding as Chief Product Officer

• Google Warned Users of 40,000 State-Sponsored Attacks in 2019

Generated on 2020-03-28 23:55:11.272619