IT Security News Daily Summary 2021-04-05

• China Smashed World’s Largest Game Cheating Ring – Police Arrested 10, Seized Assets Worth $46 Million

• Data Of 533 Million Facebook Users Leaked On Dark Web For Free

• Google wins decade-old software case against Oracle

• Space Force satellite communications contract gets nod for CMMC

• A renewed push for secure modernization

• Data from 553 Million Facebook Accounts Leaked Online

• Apple Reminds Developers About Upcoming App Tracking Transparency Enforcement in iOS 14.5

• Apple Mail Zero-Click Security Vulnerability Allows Email Snooping

• LinkedIn Spear-Phishing Campaign Targets Job Hunters

• Most applications today are deployed with vulnerabilities, and many are never patched

• Vulnerabilities are high in new applications, expert says

• Can a new DHS cybersecurity strategy help the private sector?

• Lawfare Live: The Continuing Threat of White Extremism

• Hong Kong’s Election Overhaul in Context

• Has Kazakhstan Failed Xinjiang’s Ethnic Kazakhs?

• BrandPost: Four Essential SASE Security Must-haves

• How marketing principles can be used to enhance cybersecurity training

• CISA: APTs exploiting Fortinet FortiOS vulnerabilities

• Pastor Charged with Sharing CSAM

• Cyral Announces On-Call Access Management Trial at Oktane21

• Streamlining Third-Party Risk Management

• Facebook Doesn’t Want to Give Apple Requested Documents in Epic v. Apple Fight

• Microsoft Defender for Endpoint now supports Windows 10 on Arm devices

• Attackers Utilize GitHub’s CI/CD Actions Features

• Ransomware Attacks on Industrial Control Systems Hit 33.4% in H2 2020

• A Malware Incident is Preventing Emissions Checks in Eight US States

• BazarCall Malware Targets Windows Systems While Mimicking Call Centers

• How To Defend the Extended Network Against Web Risks

• Remote work increases demand for zero-trust security

• Data of Half a Billion Facebook Users Leaked

• “Engineering Oversight” Costs ForceDAO $367k

• Ransomware Defense: Three Implementations Every Security Team Needs

• Centrify Brings Privileged Identity Leadership in Support of First-Ever ‘Identity Management Day’ April 13, 2021

• Code42 Expedites Insider Risk Response Using Automated Slack Workflows

• Jumio Collaborates With Microsoft to Deliver on Its Vision of Decentralized Digital Identity

• Apple Fiddles While App Store Burns: $1M Bitcoin Scam FAIL

• Microsoft Pits Surface Pro 7 Against iPad Pro, Says Surface is ‘Still the Better Choice’

• More Money, Less Problems: XDR Investment Can Protect the Financial Services Industry

• CISA, FBI Warn of Attacks Targeting Fortinet FortiOS

• Hackers Exploit Windows BITS Feature To Launch Malware Attack

• How to Simplify and Secure On-Call Access Management

• Streamlining Third Party Risk Management

• A week in security (March 29 – April 4)

• Some newly found details about Chinese Hacking Group APT41

• Hackers exploiting critical vulnerabilities in Fortinet VPN – FBI-CISA

• 15 Cybersecurity Pitfalls and Fixes for SMBs

• University of California Victim of Nationwide Hack Attack

• VMware Patches Critical Flaw in Carbon Black Cloud Workload

• Vulnerability Summary for the Week of March 29, 2021

• The Mission of Supporting Healthcare Providers Continues…

• Active Content: What It Is & How It Becomes Malicious

• 2,5M+ users can check whether their data were exposed in Facebook data leak

• The Cesspool Of The Internet Is To Be Found In A Village In North Holland

• Review: Capra Leather’s AirPods Max Case is a Premium Alternative to the Apple Smart Case

• Expert Insight: Arup’s Data Breach

• Ransomware Is Quickly Becoming The Most Common Form Of Harmful “Ware” Attacks Levied By Threat Actors.

• Cisco Goes Passwordless

• Cisco Goes Passwordlesspatient PHIInadvertently Added To GitHub Artic Code Vault – Expert Perspective

• Expert Reaction On Broward District Attacker Demanded $40Mil Ransom

• GitHub Infrastructure Used to Mine Cryptocurrency

• Brown University Was Recently Hit by A Cyberattack

• Asset Management System Frequently Asked Questions and More

• Asteelflash Hit by REvil Ransomware Attack

• Protect your business from email phishing with multi-factor authentication

• XSS Vulnerability In Ivory Search WordPress Plugin Risked Over 60K Sites

• Italian Menswear Brand Boggi Milano Suffered Ransomware Attack

• HTTPX – A Tool to Fingerprint a Web Server

• Operationalize your AI workloads at the edge with NetApp and Lenovo for inferencing

• 8 Steps For Securing Your Linux Server | Avast

• cyber hijacking

• Linux 101: The different types of sudo and su

• US Lawmakers Press Online Ad Auctioneers Over User Data

• North Korean-Backed Group Sets Up Fake Security Company, Google Says

• Child Tweets Gibberish from US Nuclear Agency Account

• 7 Ways to Reduce Cyber Threats From Remote Workers

• How the Work-From-Home Shift Impacts SaaS Security

• Certifications, Audits and Compliance Made Easy

• Technology Could Make Fighting COVID Less Restrictive But Privacy Will Take A Hit

• Facebook Data For Over 500M Users Reportedly Leaks Online

• Ubiquiti Accused of Covering Up a ‘Catastrophic’ Data Breach

• Rust Programming Language Raises Privacy Concerns

• How Deliveroo Scared Customers into Believing They Had Been Scammed

• Data Breach at Facebook Leaks Information of 533 Million Users

• Molson Coors “Cyberattack Incident” Could Cost Company $140 Million

• 33.4% of ICS computers hit by a cyber attack in H2 2020

• Facebook Pay Introduces Personalized QR Codes for Person-to-Person Payments

• What Is Enable DEP in Windows?

• Broward County Public Schools Hit with $40 Million Ransom by Conti Ransomware Gang

• APT Groups Are Targeting Fortinet FortiOS Servers, FBI and CISA Warn

• 10 Best Laptops for Adobe Creative Cloud 2021 – Review and Buyer’s Guide

• Growth Strategies for China Must Prioritize WeChat Security

• Protecting Human Rights in The Era of Cyber Information Warfare

• How To Remove Ransomware From Android Phone Easily?

• Supply chain attacks: what we know about the SolarWinds ‘Sunburst’ exploit, and why it still matters

• Ransomware: A company paid millions to get their data back, but forgot to do one thing. So the hackers came back again

• Name That Edge Toon: Rough Patch?

• Test Automation for Application Security

• Constella Intelligence Signs Onto the World Wide Web Foundation’s Initiative for a Better Internet

• Deals: Apple’s 512GB M1 MacBook Pro Drops to $1,349.99 ($150 Off)

• RSA Conference 2021: Resilience

• 5 factors to consider when selecting a POS system

• Nzyme Project – An Inclusive WiFi Defense System To Detect Bandits

• Sideloading Apps Would ‘Break’ the Security and Privacy of iPhone, Says Tim Cook

• CISSPs from Around the Globe: An Interview with Mari Aoba

• Mobile gaming addiction is on the rise

• What is homomorphic encryption, and why should you care?

• Tencent’s Timi Studios ‘Made $10bn’ In 2020

• Lawyers In Huawei Extradition Case Argue Against US ‘Power Grab’

• Snapchat Owner ‘Explored Ways’ Of Violating Apple’s Privacy Rules

• Deliveroo Flop Raises Questions For London Tech IPOs

• Attackers Disclose Personal Data of Students in Massive Cyberattack

• Top 5 skills a SOC analyst needs

• The SolarWinds hack timeline: Who knew what, and when?

• FCW Insider: April 5, 2021

• Ubiquiti Shares Fall After Reportedly Downplaying ‘Catastrophic’ Data Breach

• The leap of a Cycldek-related threat actor

• Facebook Data for Over 535 Million Users Leaked on Hacker Website

• Jason Sudeikis Wins SAG Award for Outstanding Performance in Apple TV+ Series ‘Ted Lasso’

• What Is Registry Management and Why Is It Important?

• Call of Duty: Warzone Cheating Gamers Scammed

• Uber Ordered To Pay $1.1m To Disabled Passenger

• Apple’s Siri No Longer Uses Female Voice By Default

• Tesla Posts Record Deliveries, Beating Expectations

• How to Use AWS IAM Role on AWS EKS PODs

• Firmware attacks, a grey area in cybersecurity of organizations

• Apple Adjusts Trade-In Value of iPad Pro, iPhone 11, and Select Mac Models

• Multi-Factor Authentication in Anypoint Platform

• More Businesses are Accepting Bitcoin

• Black Kingdom Ransomware Jumps on the Exchange Express

• Securing Dev Environments is Security Leaders’ Top Concern

• LG to Shut Down Smartphone Business

• Trying to register your antivirus in Windows Security Center?

• Network Monitoring: The Forgotten Cybersecurity Tool

• IBM announces new FHE encryption standard for better data security

• Half a billion user data accessed by hackers in Facebook data leak 2021

• Encryption is either secure or it’s not – there is no middle ground

• One-Third of Organizations Take No Action After Detecting a Cyber Attack

• The impact of the CCPA on companies’ privacy practices

• We must crush digital misinformation before it destroys society

• ISC Stormcast For Monday, April 5th, 2021 https://isc.sans.edu/podcastdetail.html?id=7442, (Mon, Apr 5th)

• As online fraud rises, 72% of retail brands expect to grow fraud teams

• Number of eSIMs installed in connected devices to reach 3.4B in 2025

• North Korean Hackers Use Exploits to Plant Malware on Researcher’s Computers

• Celonis, IBM and Red Hat partnership drives flexibility and speed for enterprise digital transformation

• BMC helps modernize and streamline mainframe application development and delivery

• Technology could make fighting COVID less restrictive but privacy will take a hit

• Cobwebs’ geospatial data and spatial analysis enable orgs to get location intelligence

• Mitsubishi integrates MEPPI and MEHITS to offer solutions and services for data center apps

• Dawn Colossi joins Software AG as CMO

• ReliaQuest appoints Kara Wilson to its Board of Directors and Alex Bender as CMO

• IT Security News Weekly Summary – Week 13

• IT Security News Daily Summary 2021-04-04

• YARA and CyberChef: ZIP, (Sun, Apr 4th)

• Alleged iPhone 13 Pro Mockup Shows Smaller Notch, Repositioned Earpiece and Front Camera

• Ubiquiti All But Confirms Breach Response Iniquity

• CERIAS – Levi Lloyd’s ‘Securing The Software Supply Chain’

• Robert M. Lee’s & Jeff Haas’ Little Bobby Comics – ‘WEEK 323’

• CERIAS – Caroline Wong’s ‘Security Industry Context’

• Adobe Illustrator Now Available for Apple Silicon in Beta

• Top Tips for Securing Your Linux System in 2021>

• 533 Million Facebook Users’ Phone Numbers And Personal Data Leaked Online

• NIST Releases Draft Guidance on Election Cybersecurity

• Hackers Tap Into Home Security Cameras, Record Sex Tapes Too Sell Online

• Video: YARA and CyberChef, (Sat, Apr 3rd)

• The International Far-Right Terrorist Threat Requires a Multilateral Response

• Malware attack on Applus blocked vehicle inspections in some US states

• Goodbye Cryptocurrencies: Number of ‘Dead’ Coins Increased by 35% Over Last Year

• Security Affairs newsletter Round 308

• How cloud architectures defend against the cyber attack surge

• Tala Research Shows that European Telecommunication Websites Expose Sensitive Customer Data

• The UK Is Trying to Stop Facebook’s End-to-End Encryption

• Clop Ransomware operators plunder US universities

• Data leak of over 533 million Facebook users

• Attackers found abusing GitHub Infrastructure to Mine Cryptocurrency

• 533 Million Facebook Users’ Phone Numbers and Personal Data Leaked Online

• Attackers Targeted Robinhood with a Phishing Campaign

• Week in review: PHP supply chain attack, common zero trust traps, hardening CI/CD pipelines

• Multilingual Cybersecurity Awareness Training adapted for your needs

• Penetration testing

• Russian hackers suspected of stealing thousands of US State Department emails

• Google’s Pixel & Apple’s iPhone Track & Transmit Telemetry Data, Despite The User Explicitly Opting Out – New Report

• Facebook – 2,529,621 breached accounts

• Facebook data of 500M+ users from 106 countries leaked online

Generated on 2021-04-05 23:55:07.139629