IT Security News Daily Summary 2021-03-31

• BrandPost: The Journey to SASE: Cisco Eases Security Complexity

• BrandPost: Don’t Make This Mistake on the Journey to Passwordless Security

• antimalware (anti-malware)

• challenge-response authentication

• Air Force seeks ‘ubiquitous connectivity’ from telework to bases

• Mayorkas announces cyber ‘sprints’ on ransomware, ICS, workforce

• NOAA signs data sharing agreement with offshore wind firm

• NASA data supports agricultural analytics

• Microsoft Wins $22 Billion Deal Making Headsets for US Army

• What’s So Great About XDR?

• Zettaset Unveils Encryption Management Console

• President Biden extended Executive Order 13694 regarding cyberattack sanctions

• Ethiopia’s Tigray Conflict: Alleged Atrocities, Law of War Violations and Regional Implications

• Lawfare Lecture: Paul Rosenzweig on Enterprise Cybersecurity Measurement

• Fraud Ring Launders Money Via Fake Charity Donations

• Apple, Google Both Track Mobile Telemetry Data, Despite Users Opting Out

• IRS Warns of Higher Education Phishing Scam

• 83% of Businesses Hit With a Firmware Attack in Past Two Years

• I Now Own the Coinhive Domain. Here’s How I’m Fighting Cryptojacking and Doing Good Things with Content Security Policies.

• The Importance of Website Backups

• XKCD ‘Immune Response’

• Bsides Seattle 2020 – Olivia Stella’s ‘Airplane Mode: Cybersecurity At 30,000+ Feet’

• Apple’s First 13-Inch MacBook Pro With Retina Display Now Classified as ‘Obsolete’

• Schools Can’t Punish Students for Off-Campus Speech, Including Social Media Posts, EFF Tells Supreme Court

• A child sent out gibberish tweet from official US Nuclear-agency account

• McAfee Defenders Blog: Reality Check for your Defenses

• Is the Clubhouse App a Safe Place for Kids to Hangout?

• How the government could become the next Airbnb

• Child Tweets Gibberish from U.S. Nuke Account

• Fraud Ring Lauders Money Via Fake Charity Donations

• How to use Google’s Password Checkup tool

• CISA and RH-ISAC to Run Cybersecurity Drill

• College Students Targeted in Newest IRS Scam

• Bsides Seattle 2020 – Caleb McGary’s ‘Red Team Handcuffs’

• Misconfiguration Leaks 138GB of Information to the Public

• FBI Pegs 2020 Cybercrime Costs at $4 Billion – Actual Losses Likely Higher

• Fake COVID-19 Vaccine Card Scam

• VMware Patches Two Severe Vulnerabilities

• Scammers Target Universities in Ongoing IRS Phishing Attacks

• Charming Kitten Targets US and Israeli Healthcare Professionals

• BrandPost: Trusting Your Security Vendor in an Evolving Threat Landscape

• How to back up your Gmail: The ultimate guide for 2021

• Malicious attack now targeting video gamers and modders

• Dutch Data Protection Authority Fines Booking.com Over Incident Notification

• CISA Releases Supplemental Guidance on Emergency Directive for Microsoft Exchange Server Vulnerabilities

• Apple Seeds Sixth Beta of macOS Big Sur 11.3 to Developers

• Apple Seeds Sixth Betas of iOS 14.5 and iPadOS 14.5 to Developers

• iOS 14.5 Adds New Siri Voices, No Longer Defaults to Female

• iOS 14.5 Will Recalibrate iPhone 11 Batteries to Fix Battery Health Bug

• Apple Releases Safari Technology Preview 123 With Bug Fixes and Performance Improvements

• VMware urges customers to patch critical vulnerabilities in vRealize Operations platform

• National health passes: Short-term fix or long-term legacy?

• BrandPost: The Value of Cybersecurity Certifications and Training for Career Growth

• Living Security Raises $14 Million for Its Human Risk Management Platform

• Reality Show Members Charged with Telemarketing Scam

• Advice From Security Experts: How to Approach Security in the New Normal

• Back in a Bit: Attacker Use of the Windows Background Intelligent
  Transfer Service

• A Successful Security Platform Requires the Strongest Partner Ecosystem

• Asset Management – Back To The Roots

• HYCU and Bain Capital Ventures partner in latest $87.5 funding round

• Wow…. Ziggy Ransomware gang to refund its victims

• Two Linux Vulnerabilities Could Allow Bypassing Spectre Attack Mitigations

• MobiKwik Suffered Data Breach – 3.5M Customers’ Data Uploaded to Dark Web

• Cryptic Tweet From US Strategic Command Was Down To Child

• Cisco is bringing individual and team insights to Webex video calls

• Analyzing the UK’s Nuclear Deterrence Theory for Cyberspace

• Here’s How to Safeguard Against Mobikwik Data Breach

• 5-star customer service: fraudsters launch massive campaign against Indonesia’s major banks on Twitter

• Apple to Report Q2 2021 Earnings Results on April 28

• Apple Aiming to Announce Mixed-Reality Headset With In-Person Event in ‘Next Several Months’

• What Did Gen. Nakasone Say About Defense Department Operations (Not Just Cyber Operations)?

• The Internet of Very Cold Things

• Lawfare Live: Reforming Civil Settlements for Police Misconduct

• Universities Targeted in Ongoing IRS Phishing Attacks

• Zero Trust: 7 adoption strategies from security leaders

• Microsoft, Facebook To Reopen Some US Offices

• Linux Distribution Coverage Extended Across the VMware Carbon Black Cloud

• Microsoft Office 365 still the top target among phishing attacks

• Shadow IT is your organization’s next remote working nightmare

• Over 80% of IT leaders will adopt or expand cloud-based IAM and face challenges

• Iranian Hackers Target Medical Personnel in US, Israel

• Winner Crowned in “Hacker Games” Contest Promoting Secure Coding Skills

• 3 Ways Vendors Can Inspire Customer Trust Amid Breaches

• Citrix Releases Security Updates for Hypervisor

• VMware Releases Security Updates

• Google Releases Security Updates for Chrome

• Don’t Skim This: A Brief Introduction to Website Skimming

• Chinese experts earned $20,000 for reporting a Chrome Sandbox Escape

• Amazon Tweets Trolling Congress Were So Bad That IT Thought Account Was Hacked

• Ziggy Ransomware Gang Offers Refunds To Victims

• Iranian Credential Thieves Target Medical Researchers

• Hacker Exploits Bug In Doom To Run Snake

• Casting Some Light upon the Concept of Privilege Identity Management

• What Is Cyber Threat Hunting and Why You Need It?

• The Emails of the Department of Homeland Security exposed

• Ubiquiti Networks Security Breach was catastrophic, whistleblower says

• Fintech Platform MobiKwik Denies 8.2 TB Data Breach

• Google Adds £21m To EU Fake News Warchest

• Gaming mods, cheat engines are spreading Trojan malware and planting backdoors

• Best VPN 2021: Expert reviews of the best VPN services

• Tax refund phishing scam targets university students and staffers

• Don’t give hackers a home run by using these baseball team names in your passwords

• Critical Infrastructure Protection Firm OPSWAT Secures $125 Million Growth Funding

• How to build a honeypot to increase network security

• DoJ Clamps Down on COVID-19 Fraud, Charging Nearly 500 Individuals

• Weakness in EDR Tools Lets Attackers Push Malware Past Them

• Decided to move on from your NGAV/EDR? A Guide for Small Security Teams to What’s Next

• Credential Phishing: Themes and Tactics

• TalaTek Selected by CMMC-AB as One of the First CMMC Third-Party-Assessor-Approved Organizations

• University of Warwick Wins Veracode’s First-Ever Hacker Games

• Financial Cyberthreats in 2020

• Apple Invests $50 Million in Independent Music Artist Platform UnitedMasters

• Apple Says Over 110 Manufacturing Partners Committed to Using 100% Renewable Energy

• Arizona Bill That Would Let Developers Avoid Apple’s In-App Purchase Rules Scrapped After Intense Lobbying

• Chained Vulnerabilities in VMware vRealize Operations Could Lead to Unauthenticated Remote Code Execution

• UK Cyber Security Council Becomes Independent Entity

• What Is an Attack Surface in Cybersecurity?

• Useful Tips for Choosing the Right 3D Printer

• 6 Benefits Of GPS Tracking Cameras

• Top 4 Reasons Why Network Security Is Critical for Businesses

• 5G Network Slicing Vulnerabilities Risk DoS, Location Tracking, Data Theft, and Other Threats

• Facebook To Allow Users To Limit Comments On Posts

• Edge computing orchestration startup Zededa raises $12.5M

• Child tweets on behalf of nuke, space mission agency US Strategic Command

• APT Charming Kitten Pounces on Medical Researchers

• Chinese Researchers Earn Another $20,000 for Chrome Sandbox Escape

• Most Global Chip Companies Show Signs of Compromise

• Here’s How One Airline Upgraded Its Security in the Cloud

• Five worthy reads: The unexpected costs following a cyberattack

• Airline Body IATA to Launch COVID-19 Travel Passport App in April

• MobiKwik Data Breach – Thoughts From Experts

• The npm netmask vulnerability explained so you can actually understand it

• Old but Gold – Attack and Defend the Sys Admins

• 10 Most Innovative Information Security Companies at RSA Conference 2020 (USA)

• VMware patches critical vRealize Operations platform vulnerabilities

• New poll shows Facebook’s severe trust problem

• James Reynolds Joins SecureAge Technology to Lead Security Product Management

• UK Cyber Security Council Officially Launches as Independent Body

• Mobikwik Data Leak of 10cr Users: ‘The Largest KYC Data Leak in History’

• The Convergence of Cybersecurity & Student Safety in K-12 Schools

• State Officials Benefit from Cybersecurity Training Offered by the National Cybersecurity Center

• Google Maps Adds Eco Friendly Routes

• Women In Leadership Panel | Avast

• World Backup Day | Avast

• Check Point Software and HashiCorp partner to help organizations automate firewall operations while maintaining security posture and compliance.

• Opswat expands infrastructure protection with anti-malware tools, raises $125M

• VPNs: Mozilla just added these new feature to its virtual private network

• The Often-Overlooked Element of a Hack: Endpoints

• Hungarian authorities break up €8 million VAT fraud scheme

• The Benefits of Offloading SSL (certs) on F5 Devices, and How to Automate it

• Spotify Introduces New Personalized Mixes Featuring Favorite Artists, Genres, and Decades

• Facebook Adds New ‘Most Recent’ Timeline to Switch to Chronological Posts

• Expert On The Report On Lack Of Visibility Into Cyber Threats

• Serious Vulnerability In Netmask npm Package Risked 270K+ Projects

• Microsoft 365 Defender updates bring a single portal view

• SpaceX SN11 Rocket Explodes During Descent

• FCW Insider: March 31, 2021

• Pandemic threats: The common threads in COVID-19 scams and criminal schemes

• Microsoft: Firmware attacks are on the rise and you aren’t worrying about them enough

• Three-Quarters of Legal Breaches Caused by Insiders

• Email accounts of DHS members were compromised in the SolarWinds hack

• Quick Analysis of a Modular InfoStealer, (Wed, Mar 31st)

• Apple Partners With South Carolina to Build Eight Open Access Mac Computer Labs

• Google Meet Extends Free ‘Unlimited’ Calls Until June 30

• Role of Encryption in GDPR Compliance

• NHS Reduces Cyber-Skills Shortages but Breach Problems Remain

• Hackers are implanting multiple backdoors at industrial targets in Japan

• Research Claiming Android Collects 20x More User Data Than iOS ‘Off By An Order of Magnitude,’ Says Google

• Kuo: iPhone 13 Lineup to Feature Nearly Identical Wide Camera as iPhone 12

• Microsoft Shuts Down Cortana App for iOS and Android

• (ISC)² calls for collaboration amongst UK Cyber Security Council membership and training bodies

• 5 Effective Strategies to Ensure the Excellence of Cybersecurity

• Whistleblower claims Ubiquiti Networks data breach was ‘catastrophic’

• How Cybereason is reversing the adversary advantage

• Follow the money: members of drug trafficking network arrested for money laundering in Germany and Luxembourg

• How to Secure the Home Branch Office

• Breach Clarity Data Breach Report: Week of March 29

• IETF deprecates TLS 1.0 and TLS 1.1, update to latest versions

• A Few Hours After the Publication: Dozens of Scanning Attempts for Vulnerable PHP Servers

• (ISC)2 and the Creation of the U.K. Cyber Security Council

• Looking for adding new detection technologies in your security products?

• MIDC’s Server Hacked, Threat to Destroy Data

• Building Immunity at AppSec Insertion Points

• 3 steps to meeting data privacy regulation compliance through identity programs

• Tax scammers in China turn photos into vids to crack tax dept facial recognition system

• Beware of this Royal Mail Cyber Scam

• Kaspersky says most of the ransomware victims cannot get back their data

• Backdoor added to PHP source code in Git server breach

• Manufacturing Has the Lowest Percentage of High-Severity Flaws but Needs to Improve Time to Remediation

• Digital dependence and innovation: Two critical trends in cyber espionage and crime

• Nearly 40% of new ransomware families use both data encryption and data theft in attacks

• Tax scammers in China turn photos into vids to crack tax dept. facial recognition system

• Cybersecurity strategy…. To Plan or not to plan…That is the question

• Organizations suffer downtime despite following cybersecurity recommendations

• Lack of IT-OT collaboration holding back smart factory security projects

• Payment app MobiKwik denies customer data was stolen from it, has no idea how the info ended up on the dark web: Maybe it was your fault?

• ISC Stormcast For Wednesday, March 31st, 2021 https://isc.sans.edu/podcastdetail.html?id=7436, (Wed, Mar 31st)

• Board directors need to play an active role in protecting their org from cyber risks

• Hybrid IAM: Addressing the security and experience issues caused by hybrid IT

• Google Is Testing Its Controversial New Ad Targeting Tech in Millions of Browsers. Here’s What We Know.

• Cisco CEO Chuck Robbins: We’re doing everything we can to meet customer demand

• Payment app MobiKwik denies customer data was stolen from it, has no idea how the info ended up on the dark web

• Autohost launches Threat Intelligence Platform to mitigate fraud risk in the hospitality industry

• India payment app MobiKwik denies data leak, says customers may have posted own data to Dark Web

• Raytion launches Enterprise Search Connectors for ServiceNow AI Search

• Proxmox Mail Gateway 6.4: Protects orgs from spam, viruses, Trojans, and phishing emails

• Pindrop enables European enterprises to defend against telephony and cross channel fraud attacks

• Sysdig introduces unified cloud and container security with the launch of CSPM

• Cl0p ransomware gang leaks sensitive data from 6 US universites

• Argus collaborates with Microsoft to provide a cloud security solution to vehicle manufacturers

• CircleCI offers cloud-based CI/CD services for the Arm architecture

• Zimperium partners with Oracle to help enterprises combat advanced mobile threats

• ADVA unveils FSP 3000 DCI OLS designed for 400ZR technologies

• Crowdfunding Legal Fees Is Not a Crime

• Internet Safety Tips for Seniors and Scams to Watch Out for

• C-cure cybersecurity expert team joins Nixu

• Tricentis acquires Neotys to accelerate enterprises’ digital transformation with automated software testing

• Panasonic partners with McAfee to commercialize vehicle security monitoring services

• KPMG now offers RelativityOne in Singapore

• Peer-To-Peer Cybersecurity Insights For 2021

• The Best Network Protection: Go Deep or Go Broad?

• German Parliament Bundestag targeted again by Russia-linked hackers

• Hackers pushed malware to PHP repositories to open a “backdoor” to websites

• Who cares about backup?

• NASA seeks cloud-based platform for airspace management

• As vaccine passports emerge, administration takes advisory role

• BlackBerry fiscal Q4 revenue misses expectations, in talks to sell mobile patents

• Mysterious Hades ransomware striking ‘big game’ enterprises

• Security on a Shoestring? More Budget Means More Detection

• CMMC Accreditation Body appoints Matthew Travis as CEO

• Ketan Gangatirkar joins Coder as VP of engineering

• Saviynt names Anne Ceruti as Head of People and expands its Board of Advisors

• Living Security raises $14M to further develop its human risk management platform

• Come April, Nothing Is Certain Except Phishing and Taxes

• Risk Management, C-Suite Shifts & Next-Gen Text Scams: Your March 2021 Security Intelligence Roundup

• JADC2 needs to be Pentagon’s ‘big bet,’ Flournoy says

• Unions, agencies encouraging feds to get vaccinated

• What We Know (and Don’t Know) So Far About the ‘Supernova’ SolarWinds Attack

• Publicly Available Data Enables Enterprise Cyberattacks

• Snap Working on Advanced Smart Glasses With Augmented Reality Capabilities

• What Would Happen If States Started Looking at Cyber Operations as a “Threat” to Use Force?

• Local Franchising, Big Cities, and Fiber Broadband

• Browser tracking protections won’t stop tracking, warns DuckDuckGo

• IT Security News Daily Summary 2021-03-30

• Expected breach disclosure mandates will test government-industry cooperation

• NIST issues draft election security framework

• It is time for a National Strategic Computing Reserve?

• Malicious Docker Cryptomining Images Rack Up 20M Downloads

• Ziggy Ransomware Gang Offers Refunds to Victims

• Trust in software security has eroded since the SolarWinds attack

• SolarWinds attack makes us distrust the software we buy

• Tips for robotic developers

• Coding for robots: Need-to-know languages and skills

• What is cyber risk quantification, and why is it important?

• Experts Explain Why Medical Misinformation Continues To Spread On Facebook Despite Ban

• White Ops Renames Company ‘Human’

• Exploiting Embedded Linux Devices Through the JTAG Interface

• Uber iOS App Could Soon Include Augmented Reality Directions for Finding Your Driver

• Browser tracking protection doesn’t stop tracking, warns DuckDuckGo

• PHP backdoor attempt shows need for better code authenticity verification

• How phishing attacks evade traditional security defenses

• AI is Security’s Best Defense

• Feds debate while states act on data privacy laws

• VMware addresses SSRF flaw in vRealize Operations that allows stealing admin credentials

• Bitcoin Scam App Approved by Apple Robs iPhone User of $600,000+

• Mozilla VPN now nudges users to put shields up on dodgy networks, adds LAN access

• Hacker claims stealing 8.2TB of MobiKwik data; leaks some online

• The cloud attack you didn’t see coming

• Create an incident response plan with this free template

• Whistleblower: Ubiquiti Breach “Catastrophic”

• Bsides Seattle 2020 – Trupti Shiralkar’s ‘Zerotrusting Serverless Applications’

• Belkin Debuts New MagSafe-Compatible Accessories

• Apple Researching Mac Pro’s ‘Cheese Grater’ Design for Other Devices Like iPhone

• Apple Dominated Audio Device Shipments in 2020 With AirPods and Beats

• MalwareBytes Warns of “I Accidentally Reported You” Steam Scam

• Proof-of-Concept Decryptor Released for Black KingDom Ransomware

• Docker Hub Host Images Shipping with Cryptominers

• PHP Git Breached – 2 Commits Under Developers Name’s Infected

• Harris Federation Education Charity Suffered Ransomware Attack

• BrandPost: Protecting Children from Online Cybersecurity Risks

• Armv9 is Arm’s first major architectural update in a decade

• Quick Hits

• Cyan Forensics Raises $6.9 Million to Combat Pedophiles and Terrorists

• Data loss prevention quiz: Test your training on DLP features

• Best practices for reporting ransomware attacks

• Dog Helps Kids Stay Safe Online

• What You Need to Know — or Remember — About Web Shells

• Tick … Tick … Boom

• SolarWinds Hack: U.S. Govt Failure is Deeply Worrying

• Apple Maps Displays COVID-19 Guidelines for Airports Worldwide

• Adobe Launches iPad Creative App Bundle for $14.99 per Month

• Verizon Shutting Down 3G Network on December 31, 2022

• What’s Covered Under Cyber Risk Insurance

• What educational institutions need to do to protect themselves from cyber threats

• 7 top IoT security challenges and how to overcome them

• What is crypto? The business starter guide to cryptocurrency

• Ransomware: Why we’re now facing a perfect storm

• SolarWinds Attackers Accessed DHS Emails, Report

• PHP web language narrowly avoids “backdoor” supply chain attack

• Younger Ransomware Victims More Likely to Pay Up

• #LORCALive: Nation State Cooperation Essential to Fighting Scourge of Cybercrime

• 278,000 GitHub Repositories Affected by a Critical Networking Flaw in Netmask

• Ghost Users Haunt Healthcare Firms

• Watch Out for These Cyber-Risks

• Monitoring ICS Cyber Operation Tools and Software Exploit Modules To
  Anticipate Future Threats

• What does it take to do SASE your way?

• Apple Supplier Foxconn Expects Shipments to Be Impacted by Global Chip Shortage

• PYSA, the ransomware attacking schools

• Over 100 million MobiKwik user data leaked in Cyber Attack

• Cisco integrates networking, security, IT management for the enterprise

• 10 tips to protect your organization and remote endpoints against cyberthreats

• Microsoft: Firmware Attacks Outpacing Security Investments

• Child Unknowingly Tweets From US Nuclear Command’s Account

• Cybercriminals Publish Data Allegedly Stolen From Shell, Multiple Universities

• PHP web language narrowly avoids dangerous supply chain attack

• Beyond MITRE ATT&CK: The Case for a New Cyber Kill Chain

• Cisco’s Vision for SASE and a Brand New Offer to Kickstart Your Journey

• How to Prevent a Rootkit Attack?

• Reflected XSS Vulnerability In “Ivory Search” WP Plugin Impact Over 60K sites

• System Update: New Android Malware

• Security Intelligence Handbook Chapter 11: Geopolitical Intelligence Identifies IT Risks Across the Globe

• First stable release of CentOS replacement AlmaLinux OS now available

• Billions of Records Worldwide Were Already Hacked

• Malware Attack Hits Multinational Conglomerate Honeywell

• Duo’s Passwordless Authentication is Coming!

• New Security Signals study shows firmware attacks on the rise; here’s how Microsoft is working to help eliminate this entire class of threats

• Malicious commits found in PHP code repository: What you need to know

• How Pandemic-Driven Tech Trends are Changing the Labor Market for Good

• Multi-factor authentication: Top 5 things to know

• Top 5 things to know about multi-factor authentication

• Biden Extends Executive Order on Cyberattack Sanctions

• In the Rush to Embrace Hybrid Cloud, Don’t Forget About Security

• Experts found 2 Linux Kernel flaws that can allow bypassing Spectre mitigations

• Intel Accused Of Wiretapping Because It Uses Analytics To Track Keystrokes, Mouse Movements On Its Website

• Hackers Backdoor PHP After Breaching Internal Git Server

• Application Security Tactics Are Due For An Overhaul

• PayPal Launches Crypto Checkout Service

• Students Can Win WWDC 2021 Swag in Apple’s Annual Swift Coding Challenge

• Disney World Launches MagicBand for iPhone and Apple Watch With Animations and Express Mode Support

• Experts Reaction On Harris Federation Ransomware Attack

• Backdoor Pushed in PHP Git Repository Following Server Hack

• Over 55 Million Scam Calls Since December Were Blocked by Australian Telcos

• How to Remove Wi-Fi Networks from Your Mac and iOS Device

• PHP programming language source code targeted in backdoor attack

• Akamai Sees Largest DDoS Extortion Attack Known to Date

• Apple Announces Digital WWDC 2021 Event Taking Place June 7-11

• Apple Revamps Developer App Alongside WWDC 2021 Announcement

• FBI: Cybercrime Shot Up in 2020 Amidst Pandemic

• A Guide to Payment Gateway Testing

• TruU Named Newest Competitor in the 2021 ‘ASTORS’ Awards Program

• The fastest VPN in 2021

• Intel Sued Under Wiretapping Laws for Tracking User Activity on its Website

• Linux Kernel Vulnerabilities Can Be Exploited to Bypass Spectre Mitigations

• What’s Behind the Surge in Cybersecurity Unicorns?

• What You Need to Know to Avoid Instagram Scams

• Radware Threat Researchers Live: Episode 9

• PayPal announces Checkout with Crypto

• What Is Broken Object Level Authorization (BOLA)?

• Harris Federation Hit with Ransomware Cyberattack

• And that’s yet another UK education body under attack from ransomware: Servers, email, phones yanked offline

• Backdoor In PHP Source Code Discovered

• Cloud backup and recovery company HYCU raises $87.5M

• A highly sophisticated ransomware attack leaves 36,000 students without email

• Department of Homeland Security email accounts exposed in SolarWinds hack

• Double-Extortion Ransomware Attacks Surged in 2020

• YouTube Has a Disturbingly Creepy Minecraft Problem

• How AI Augments Downsized Security Teams

• Hundreds of thousands of projects affected by a flaw in netmask npm package

• Epic Games Files Complaint to Support UK Antitrust Watchdog’s Apple Probe

• Google Maps Announces Indoor AR Navigation and Eco-Friendly Route Options

• DDoS attacks in 2021: What to expect?

• Money can buy you insurance against network break-ins but investing in infosec hygiene wouldn’t go amiss, says new NCSC chief

• MPs Face Legal Challenge Over Disappearing Messages

• Ransomware Cuts Off 37,000 Students’ Emails

• US Congress Probes ‘Risky’ SpaceX Launch

• SolarWinds Attackers ‘Accessed Emails’ Of Top US Officials

• You could be hacked and not know it

• Unfair exchange: ransomware attacks surge globally amid Microsoft Exchange Server vulnerabilities

• Ransomware group targets Universities of Maryland, California in new data leaks

• Panasonic, McAfee team up to tackle vehicle cybersecurity

• 9 tips to protect your organization against ransomware

• Report finds requiring customers to use passwords is bad for business

• Concern as Ransomware and Exchange Server Attacks Surge

• Goodbye Event Management, Hello Extended Detection and Response

• Apple Lobbies Against ‘Right to Repair’ Bill Over Privacy Concerns of Third Party Repair Shops Accessing User Data

• Expert On Refunding Victims Ransomware Payments

• Suspected Russian hackers breach US homeland security

• $30,000 to researchers who find bugs in Teams

• FCW Insider: March 30, 2021

• Fileless Malware Detections Soar 900% in 2020

• Infosec Community Increasingly Concerned about SolarWinds Breach, Four Months In

• PHP Git Server Hacked to Plant Malware in Code Base

• Live Broadcast Got Disrupted Due to Cyber-Attack on The Australian Tv Network- Nine

• APT10: sophisticated multi-layered loader Ecipekac discovered in A41APT campaign

• Old TLS versions – gone, but not forgotten… well, not really “gone” either, (Tue, Mar 30th)

• Fileless Malware Attacks Surge by 900% and Cryptominers Make a Comeback

• Booming dark web gig economy is a rising threat

• 10 pioneering women in information security

• Facebook Plans Two Cables Linking US To Asia

• Deliveroo Lowers Price Range For Landmark IPO

• 204 Fleeceware Apps Generated over $400 million in Revenue on the Apple App Store and Google Play Store

• SolarWinds Attackers Accessed DHS Secretary’s Emails — Report

• UK Court Backs Swatch in ‘One More Thing’ Trademark Row With Apple

• UK’s Home Office dangles £32m for application support on comms-snooping network

• Chinese Video App Slumps On Hong Kong Debut

• APAC firms face growing cyberattacks, take more than a week to remediate

• Facial recognition camera projects raise concerns in Eastern Europe

• Survey: 99% of Security Pros Struggling to Secure Their IoT & IIoT Devices

• Cyber attack forces live TV shows off-air on Australia’s Channel 9

• 30 Docker images downloaded 20M times in cryptojacking attacks

• Apple Reportedly Working on Redesigned Apple TV Remote

• Apple Orders 4nm Chip Production for Next-Generation Macs

• Apple Pay Support Begins Rolling Out for Select Banks in South Africa

• Your web application firewall should be more than a firewall – it should be a noise filter too

• Application security testing is not just buzzwords

• MobiKwik Suffers Major Breach — KYC Data of 3.5 Million Users Exposed

• How to Get the Best Results From ZTNA

• Microsoft Exchange Server vulnerability patching doesn’t end the menace

• Over $20m loss to CompuCom from Ransomware Attack

• Are Cloud-Native IAM Controls Good Enough for Your Enterprise?

• Apple rushes to patch zero‑day flaw in iOS, iPadOS

• How Sky Global was Indicted for Selling Security

• Cloud security experts wanted: You can be one of them

• How to avoid 4 common zero trust traps (including one that could cost you your job)

• How well have remote workers adapted one year on?

• 93% of consumers concerned about data security when filling out online forms

• Achieving Automated TISAX Compliance

• ISC Stormcast For Tuesday, March 30th, 2021 https://isc.sans.edu/podcastdetail.html?id=7434, (Tue, Mar 30th)

• Leaders need to find ways to increase internal audit capacity without increasing budgets

• How much of the data created and replicated should be stored?

• GRIMM launches Private Vulnerability Disclosure program to allow defenders to get ahead of the unknown

• Australian telcos have blocked over 55 million scam calls since December

• Fortalezca su perímetro de seguridad con el análisis de inventario

• 5 Teen Internet Safety Tips

• Celebrating Women’s History Month 2021 at Palo Alto Networks

• HID HydrantID ACM solves difficult digital certificate lifecycle management problems

• WALLIX provides enhanced data monitoring and secure remote access for healthcare orgs

• Everbridge expands its CEM SaaS platform to help orgs govern operational risk from unplanned events

• IntelliSite releases managed service to make communities safer, smarter and more connected

• After oil giant Shell hit by Clop ransomware, workers’ visas dumped online as part of extortion attempt

• Intel accused of wiretapping because it uses analytics to track keystrokes, mouse movements on its website

• Myth-busting Antivirus Software Assumptions

• Check up on Your Virtual Safety: Tips for Telehealth Protection

• Protect Your Digital Wellness: Don’t Post Your Vaccination Card Online

• CounterFlow AI appoints Bill Cantrell as CEO

• Morphisec raises $31M to enable business to automatically prevent dangerous cyberattacks

• Accenture acquires Cygni to accelerate cloud first strategies with software engineering services

• After Oil giant Shell hit by Clop ransomware, workers’ visas posted online as part of extortion attempt

Generated on 2021-03-31 23:55:13.644649