IT Security News Daily Summary 2021-04-16

• Hopeful employees targeted as phishers identify new windows of opportunity

• How to improve your workplace’s cybersecurity

• BazarLoader Malware Abuses Slack, BaseCamp Clouds

• Security Gaps in IoT Access Control Threaten Devices and Users

• High-Level Admin of FIN7 Cybercrime Group Sentenced to 10 Years in Prison

• Keyfactor to Acquire PrimeKey to Advance Certificate Automation

• Call for Papers: The University of Texas at Austin Announces the 2021 ‘Bobby R. Inman Award’ for Student Scholarship on Intelligence

• 4 Tips for Securing Your Communication Lines Remotely

• Smarter Cybersecurity Spending in a Pandemic

• Days after sanctions, House to vote again on Cyber Diplomacy Act

• iOS Kids Game Morphs into Underground Crypto Casino

• Report: It’s not all doom and gloom in cybersecurity with remote workers

• Balance Online and Offline Activities the Digital Nomad Way

• What to Expect From Apple’s April 20 Event: New iPads, AirTags and More

• Lawmakers talk agency performance plans, TMF

• NSA: 5 Security Bugs Under Active Nation-State Cyberattack

• Microsoft releases biannual reports on digital trust

• XKCD ‘Post Vaccine Social Scheduling’

• What’s New for April 2021

• 21.5-inch iMac Availability Dwindling at Apple Stores

• Duo Security Named a 2021 Gartner Peer Insights Customers’ Choice for Access Management

• HackBoss Cryptocurrency Malware Being Distributed Through Telegram

• NFT Site Rarible Targeted in Typosquatting Campaign

• Celsius Cryptocurrency Breach

• FBI cleans web shells from hacked Exchange servers in rare active defense move

• Top 5 Tips To Enhance Cloud Computing Security Solutions In 2021

• Shady scam bots trick Omegle users into nonconsensual video sex recordings

• Vulnerabilities in OpENer Stack Expose Industrial Devices to Attacks

• 6 SSH best practices to protect networks from attacks

• US Indicts SecondEye Operators

• Swedish Authorities Say Russia Is to Blame for Sports Confederation Hack

• One-Click Remote Code Execution Vulnerabilities Found in Multiple Popular Apps

• WordPress Releases Security and Maintenance Update

• Critical RCE can allow attackers to compromise Juniper Networks devices

• LTPO Displays Supporting 120Hz Refresh Rates Again Rumored for iPhone 13 Pro Models

• Deals: MagSafe Duo Charger Drops to $112.45 on Amazon ($16.55 Off)

• MacRumors Giveaway: Win an Apple Watch Fitness Award Prize Pack From Activity Awards

• Russian infosec firm Positive Technologies trying to stay positive after US sanctions

• Corporate Vision Names Intelligent Waves LLC Best High-Impact IT Systems Integrator in 2021 Global Technology Innovation Competition

• For Second Year in a Row, Hillstone Networks Recognized by Gartner as Customers’ Choice for Network Firewalls 2021

• GrammaTech Provides Static Application Security Testing (SAST) for DoD Platform One

• Considerations for performing IoMT Risk Assessments

• Do customers really care about SASE? Absolutely, and here’s why

• US Issues Russian SVR Warning

• The Whitsun Reef Incident and the Law of the Sea

• How To Protect Your Enterprise When You Can’t See Your Employees

• Security Expert Re: NSA Urges Organizations To Patch Top Vulnerabilities Exploited By Russia

• Experts On Russia Being Held Accountable For SolarWinds

• Debunking Three Cyber Insurance Myths For SMEs

• How Cisco Rolled Out Zero Trust With Duo to 100,000+ Users

• Is Russia acting as safe harbor for ransomware spreading criminals

• Companies must train their SOC teams well to prevent breaches

• Keyfactor to Merge with PrimeKey

• Meet the Cisco Telemetry Broker Team: Sunil Amin

• U.S. Fingers Putin’s Cozy Bear for SolarWinds Attacks

• Apple-Backed ‘Project CHIP’ to Start Smart Home Device Certification in Late 2021

• Expert Advice Developers to Improve Software Security After NAME:WRECK Disclosure

• Expert Insights: Dir Nat’l Intelligence Releases Annual Threat Assessment Thursday

• Patch now! NSA, CISA, and FBI warn of Russian intelligence exploiting 5 vulnerabilities

• The 7 R’s: Why infrastructure is critical to your application cloud migration

• 1-click code execution vulnerabilities in popular software apps

• Planning the best route with multiple destinations is hard even for supercomputers

• Getting real-time crash data to responders

• ‘Snakebot’ takes a dive to go where other robots can’t

• Scientists are on a path to sequencing 1 million human genomes and use big data to unlock genetic secrets

• Mandiant Front Lines: How to Tackle Exchange Exploits

• Critical Vulnerability Can Allow Attackers to Hijack or Disrupt Juniper Devices

• How the Kremlin Provides a Safe Harbor for Ransomware

• U.S. Agencies Warns of Russian APT Operators Exploiting Five Publicly Known Vulnerabilities

• Cybereason and MassCyberCenter Partner to Mentor College Students

• Trend Micro Offerings Are FedRAMP Authorized and Available on AWS

• Flaw Allows Attackers To Brick Kubernetes Clusters

• Facebook Faces Mass Legal Action Over Data Leak

• US Government Strikes Back At Kremlin For SolarWinds Hack Campaign

• Bitcoin Tumbles After Turkey Bans Crypto Payments Citing Risks

• Swinburne University Confirms Over 5,000 Individuals Affected In Data Breach

• Deals: M1 MacBook Air and MacBook Pro Deals Offer Up to $100 Off Apple’s Latest Notebooks

• PSA: Apple is Updating Old Apps With Latest Signing Certificate Ahead of iOS 14.5

• Expert Comment On DPC Facebook Investigation

• Expert Reaction on Research that Coronavirus Triggering Surge in Cyber Fraud

• Everything You Need to Know About the 2021 Facebook Data Breach

• Cleaning and Catering Business Spotless Hit by a Severe Data Breach

• Class Action Filed Over Data Breach by Presidio Employee

• Russian SVR Behind the SolarWinds Hack, According to U.S. Government

• Deepfakes were going to change everything. And then they didn’t

• Microsoft received almost 25,000 requests for consumer data from law enforcement over the last six months

• Apache SpamAssassin 3.4.6 Release Fixes Two Potentially Aggravating Bugs>

• How AI in Cybersecurity Addresses Challenges Faced by Today’s SOC Analysts

• What is the ACME protocol and how does it work? | Keyfactor

• Industry Reactions to FBI Cleaning Up Hacked Exchange Servers: Feedback Friday

• S3 Ep28.5: Hacking back – is attack an acceptable form of defence? [Podcast]

• How the Biden Administration Can Make Digital Identity a Reality

• Palo Alto Networks a Customers’ Choice in Gartner Peer Insights Report

• Video of Alleged Third-Generation Apple Pencil Leaks Ahead of Apple Event

• Some iPhone 11 Users Seeing Increased Battery Health Percentages After iOS 14.5 Recalibration Process

• Apple Music Tops Spotify With One Cent Paid Per Stream

• Apple Shares 2021 Environmental Progress Report

• A Technical Analysis of the Mirai Botnet Phenomenon

• Tesla Settles Lawsuit Against Ex Staffer Over Source Code

• Indicator Of Attack(IoA’s) And Activities – SOC/SIEM – A Detailed Explanation

• Combating Sleeper Threats With MTTD

• Google backs new security standard for smartphone VPN apps

• Google Project Zero Cuts Bug Disclosure Timeline to a 30-Day Grace Period

• Sanctioned Russian IT Firm Was Partner With Microsoft, IBM

• More Countries Officially Blame Russia for SolarWinds Attack

• Did Someone at the Commerce Dept. Find a SolarWinds Backdoor in Aug. 2020?

• Russia-linked APT SVR actively targets these 5 flaws

• More Than 5,000 People Affected in Data Breach at Swinburne University

• Celsius Email System Suffers Security Breach

• Cybersecurity Models Explained

• US sanctions Russian government, security firms for SolarWinds breach, election interference

• Apple $200m ‘Restore Fund’ Targets Climate Change

• Ransomware Attacks in 2021: Information Meets Emotion

• NSA Discloses Vulnerabilities in Microsoft Exchange

• Facebook CEO Mark Zuckerberg Urged to Scrap Instagram for Kids Plan

• Russian Intelligence Actively Exploits Five Known Vulnerabilities, NSA Says

• Malware and Scammers Are Now Targeting the Popular NFT Marketplace Rarible

• Watchdog thinks Google tricked Australians into giving up data, sues. Judge semi-agrees

• EU’s Proposed Rules For AI Usage Leaked Online

• Google Project Zero Announces 2021 Updates to Vulnerability Disclosure Policy

• Mass Monitoring of Remote Workers Drives Shadow IT Risk

• Creating a safer online world together with the Cybersecurity Tech Accord

• Microsoft Edge Gains New ‘Kids Mode’ for Safer Web Browsing

• How to Encrypt and Password Protect Files on Your Mac

• The CSO guide to top security conferences, 2021

• Quick Hits: April 16

• FCW Insider: April 16, 2021

• Cyberattack on UK university knocks out online learning, Teams and Zoom

• Google to Delay Publishing Bug Details for 30 Days

• White House Blames Russian Foreign Intelligence for SolarWinds, Imposes Sanctions on Rival Nation

• Firefox 88 to Disable FTP Next Week With Full Removal Set for June

• Adapting Security Awareness to the Post-Pandemic World

• Most Common IaaS Security Issues and Ways To Mitigate Them

• Digital Spring Cleaning: Seven Steps for Faster, Safer Devices

• Google Broke Australian Law Over Location Data Collection: Court

• Microsoft Patch Tuesday, April 2021 Edition

• Trickbot Actors Target Slack and BaseCamp Users

• University of Hertfordshire Hit by Cyberattack

• 643GB of Customer Information Exposed in a Data Breach Suffered by Bizongo

• ParkMobile Data Breach: 21Million User Data Exposed

• Severe Bugs Reported in EtherNet/IP Stack for Industrial Systems

• Mirai code re-use in Gafgyt

• iPhone 13 Series CAD Leaks Reveal Larger Camera Dimensions

• Facebook Expands Oversight Board Scope | Avast

• New Federal Data Privacy Legislation Proposed

• Three Wishes to Revitalize SIEM and Your SOC

• Emotet Takedown: Time to Celebrate?

• OPPO Watch and Band Now Support iPhone and Apple Health Syncing

• Want your endpoint security product in the ‘Microsoft Consumer Antivirus Providers for Windows’ ?

• US Senate to halt all big tech merger and acquisitions

• IOT Devices operating worldwide are vulnerable to Name Wreck Bug

• Critical Microsoft Exchange Server Vulnerabilities Could Allow Hackers to Control of Enterprise Networks

• Mozilla to start disabling FTP next week with removal set for Firefox 90

• Wordsmithing: Cybersecurity or Cyber Safety?

• Lazarus BTC Changer. Back in action with JS sniffers redesigned to steal crypto

• HTTPS Support for All Internal Services, (Fri, Apr 16th)

• Swinburne University confirms over 5,000 individuals affected in data breach

• One in six people use pet’s name as password

• Clubhouse Exclusivity Applies to Membership, Not Data

• (ISC)2 and the Creation of the U.K. Cyber Security Council

• The rise of QakBot

• The difference between SASE and Zero Trust

• Consumers worry about the cybersecurity of connected vehicles

• Infection Monkey: Open source tool allows zero trust assessment of AWS environments

• The parallels of pandemic response and IoT security

• Protecting the human attack surface from the next ransomware attack

• Securing APIs: Empowering Security

• Cyber Security Headlines – Week in Review – April 12-16, 2021

• The enterprise eGRC market is expected to grow

• 49% of employees prefer a hybrid work arrangement

• Google Project Zero testing 30-day grace period on bug details to boost user patching

• A quick round up of privacy highlights for Q1 of 2021

• Cloud Forensics Firm Cado Security Raises $10 Million in Series A Funding

• Codecov Bash Uploader Dev Tool Compromised in Supply Chain Hack

• New integration: MSPs can now manage Acronis via Kaseya VSA

• D-Link releases lineup of Vigilance solutions to provide high-resolution business surveillance

• Virsec Security Platform 2.0 stops attacks using app-aware runtime visibility inside the container

• InfluxData releases InfluxDB Notebooks to improve communication for software development teams

• DNSFilter Insights Reporting gives users deep visibility into their network’s activity

• AWS launches AQUA for Amazon Redshift to bring compute to the storage layer

• ISC Stormcast For Friday, April 16th, 2021 https://isc.sans.edu/podcastdetail.html?id=7460, (Fri, Apr 16th)

• CloudMoyo and Terracon complete data engineering initiative to modernize the BI platform

• Linux Foundation Research to broaden understanding of open source ecosystem and impact

• LinkSquares helps legal teams accelerate business contracts and deal negotiations

• Styra’s compliance packs for DAS ease collaboration between security and DevOps teams

• 2021-04-15 – BazaLoader (BazarLoader) activity

• Software Developer Arrested in Computer Sabotage Case

• Dell Technologies to spin-off VMware, positioning it for further growth

• BoxBoat reports momentum for BoxOps, its platform for DevSecOps managed services

• Lenovo unveils plans to drive transformation from devices to solutions company

• Vapor IO and VMware announce the Open Grid Alliance to accelerate the evolution of the internet

• Proctoring Tools and Dragnet Investigations Rob Students of Due Process

• 2021 and Emerging Cybersecurity Threats

• OPM digs into the post-pandemic puzzle of remote work and locality pay

• What is Pen Testing and Should You Have a Company that Performs them on Retainer?

• Human-centered Design in the New Webroot Management Console

• US Gov sanctions Russia and expels 10 diplomats over SolarWinds hack

• Lawfare Live: DHS And CISA Talk Cybersecurity

• Vividh Siddha joins Thread Group as new President

• Google Brings 37 Security Fixes to Chrome 90

• How Individualism Ruins Democracy

• Mobile app security standard for IoT, VPNs proposed by group backed by Big Tech

• IT Security News Daily Summary 2021-04-15

• BrandPost: Dirty Tricks: The Latest in Ransomware Tactics

• USTRANSCOM prepares for third-party cyber compliance assessments

• Biden Races to Shore Up Power Grid Against Hacks

• Risk & Repeat: FBI’s web shell removal raises questions

• US Imprisons “Sadistic” Sextortionist

• Pandemic Pushes Bot Operators to Redirect Efforts

• US Formally Attributes SolarWinds Attack to Russian Intelligence Agency

• M-Trends 2021: A View From the Front Lines

• Hacking Operational Technology for Defense: Lessons Learned From OT Red
  Teaming Smart Meter Control Infrastructure

• Segurança sob ataque: Padrões perigosos que colocam seu ambiente em risco

• Zero-day vulnerability in Desktop Window Manager (CVE-2021-28310) used in the wild

• US Hits Russia With Fresh Sanctions Over Solarwinds Hack, Expels Diplomats

• SolarWinds Hack – US officially Blames Russian Intel Agency Hackers

• Why I’m Excited for Keyfactor and Primekey Coming Together

• NordVPN review: A market leader with consistent speed and performance

• Child Safety Experts Urge Facebook To Scrap “Instagram For Kids” Idea

• US Sanctions on Russia Rewrite Cyberespionage’s Rules

• Industry Recognition for Cisco Secure Email Cloud Mailbox

• IBM X-Force: Ransomware Was the Preferred Attack Method in 2020

• API Security Weekly: Issue #129

• Kryon throws down the gauntlet for better RPA governance

• How to set up an SSH tarpit in Ubuntu Server 20.04

• Domain Name Security Neglected by U.S. Energy Companies: Report

• Nation-state hacker indictments: Do they help or hinder?

• Sanctions Escalate US–Russia Tensions

• How to Free Up Storage Space on iPhone and iPad

• ‘Fathom’ Whale Documentary Coming to Apple TV+ on June 25

• Sanctioning Russia for SolarWinds: What Normative Line Did Russia Cross?

• Chrome users, here’s how to opt out of the Google FLoC trial

• IcedID Malware Ramping Up

• Compromised Exchange Servers Were Used to Host Payloads to Hack Other Exchange Servers

• Researcher Discovers Kubernetes Denial of Service Vulnerability

• Operation to Remove Exchange Webshells Announced by Department of Justice

• Why Coin Miners Go Bad & How to Protect Your Tech When They Do

• OWC partners with Acronis protect your backups from ransomware attacks

• IBM: 44 Organizations Targeted in Attacks Aimed at COVID-19 Vaccine Cold Chain

• Arrest Made Over California City Data Breach

• Looking ahead to Gartner IAM Americas

• Daniel Stori’s ‘Security Expert’

• Introducing Virsec Security Platform 2.0

• Apple Pay With Express Transit Mode Now Available for San Francisco Bay Area’s Clipper Card

• CyberMDX and Microsoft: Protecting life-saving medical devices

• “Huge upsurge” in DDoS attacks during pandemic

• Virsec Security Platform Adds Runtime Container Workload Protection from the Inside

• CISSPs from Around the Globe: An Interview with Mari Aoba

• So Many Awards, So Little Time Left to Nominate. Complete Your Global Achievement Award Nomination Today!

• Endpoint Security: Helping to realize the benefits of SASE

• What is a cybersecurity strategy and how can your business develop one?

• Microsoft rolls out Edge 90, with new history search, Kids Mode, to mainstream users

• Gafgyt Botnet Lifts DDoS Tricks from Mirai

• Phishing attack ramps up against COVID-19 vaccine supply chain

• Get to know cloud-based identity governance capabilities

• Unify on-premises and cloud access control with SDP

• How to Create an Incident Response Plan From the Ground, Up

• 6 Tips for Managing Operational Risk in a Downturn

• MAR-10327841-1.v1 – SUNSHUTTLE

• CISA and CNMF Analysis of SolarWinds-related Malware

• US Sanctions Russia and Expels 10 Diplomats Over SolarWinds Cyberattack

• Spamhaus Botnet Threat Update: Q1-2021

• BSides Philly 2020 – Raymond Cazanese’ ‘The Cloud Is For Launching Cyber Attacks’

• Hands-On With Anker’s MagSafe-Compatible Battery Pack

• Why taking the cybersecurity initiative can win you business

• University of Hertfordshire suffers system outage due to cyberattack

• Congratulating Our Top MSRC 2021 Q1 Security Researchers!

• Brazilian Trojan targets Britain Smartphones leading to Banking fraud

• Jeff Bezos Urges Amazon Staff Focus In Final Shareholder Letter

• How to Design and Roll Out a Threat Model for Cloud Security

• Wells Fargo and Chase now among most imitated brands in phishing attacks

• QBot Malware Replaces IcedID in Malspam Campaigns

• Nation-State Attacks Force a New Paradigm: Patching as Incident Response

• Acunetix by Invicti Exhibiting at RSA Conference 2021

• How Frequently Should We Run a Vulnerability Scan in the Vulnerability Management Process?

• Apple Fitness+ Getting New Workouts for Expecting Mothers, Older Adults, and More on April 19

• Docker Desktop for Mac Updated With Apple Silicon Support

• Point Products vs Complete Cyber Security Suite: Which Strategy Is Better for Ensuring the Safety of Your Business?

• University of Hertfordshire pulls the plug on, well, everything after cyber attack

• It was Russia wot did it: SolarWinds hack was done by Kremlin’s APT29 crew, say UK and US

• BrandPost: The Top 3 Most Common Cloud Attacks and How to Avoid Them

• Dell To Offload Ownership Stake In VMware

• ParkMobile parking app data breach – 21M user records stolen, sold

• Keyfactor raises $125M and merges with PrimeKey to create a machine identity management platform

• SolarWinds: US and UK blame Russian intelligence service hackers for major cyber attack

• NSA: Russian Hackers Exploiting VPN Vulnerabilities – Patch Immediately

• Reddit Launches Public Bug Bounty Program

• Uni of Hertfordshire Suffers Cyber-Attack That Takes Down its Entire IT Network

• Foreign hackers attack Russian research institutes

• NSA-CISA-FBI Joint Advisory on Russian SVR Targeting U.S. and Allied Networks

• Cyber thieves move $760 million stolen in the 2016 Bitfinex heist

• Simplify and Accelerate Threat Hunting with High-Speed, High-Confidence Threat Intelligence

• Leaked Photos Show Additional Spring Colors for iPhone 12 Cases

• Peloton Seemingly Rolling Back GymKit Support

• PGH Parking App Experiences Data Breach

• Q1 2021 Cyber Attack Statistics

• What to know about the U.S. sanctions against Russia

• Why Security Pros Can’t Ignore Big Data Monopolies

• user authentication

• White House sanctions Russia over SolarWinds campaign, election interference

• FirstNet rolling out 5G, tower-to-core encryption

• Making an impact as a new CIO

• White House launches plan to protect US critical infrastructure against cyber attacks

• US Expels Russian Diplomats, Imposes New Round of Sanctions

• Malicious PowerShell Use, Attacks on Office 365 Accounts Surged in Q4

• Axis Security Selected as Finalist for RSA Conference 2021 Innovation Sandbox Contest

• Why and How You Should be Using an Internal Certificate Authority, (Thu, Apr 15th)

• Is It Still Possible To Run Malware In A Browser Using JavaScript And Rowhammer? Yes, Yes It Is

• Google Releases Chrome 90 With HTTPS By Default

• Stories Of Dealing With Ransomware Gangs

• US Imposes Sanctions On Russia Over Cyber Attacks

• Apple Launches $200 Million ‘Restore Fund’ to Remove Carbon From Atmosphere

• User Adds Car to HomeKit for In-App Controls and Automations, Showing Future Potential

• Deals: Beats Headphones Deals Abound With Up to $89 Off Powerbeats Pro, $70 Off Solo Pro, and $10 Off Beats Flex

• Privacy-Focused Browsers Oppose Google’s FLoC Technology

• A New Standard for Mobile App Security

• HTTPS Everywhere Now Uses DuckDuckGo’s Smarter Encryption

• EFF Partners with DuckDuckGo to Enhance Secure Browsing and Protect User Information on the Web

• Monetising Customer Data Without Their Knowledge Is Unethical and Must Stop By Sridhar Iyengar, MD, Zoho Europe

• Cyberattacks could pose a material risk to water and sewer utilities

• Expert publicly released Chromium-based browsers exploit demonstrated at Pwn2Own 2021

• How digital marketers track you everywhere (including offline)

• How to Secure Cloud Non-Native Workloads

• Attackers Target ProxyLogon Exploit to Install Cryptojacker

• Exploit for Second Unpatched Chromium Flaw Made Public Just After First Is Patched

• 5 cybersecurity testing areas CISOs need to address

• S3 Ep28: Pwn2Own hacks, dark web hitmen and COVID-19 privacy [Podcast]

• Deep Dive Into Security Orchestration, Automation and Response (SOAR)

• 6 Insider DLP Risk Indicators

• A Look at Digital Attacks on Gaming Resources During the Pandemic

• $125M Growth Round Fuels Keyfactor and PrimeKey Merger to Bring Machine Identity Management to the Mainstream

• Prevalent Study Reveals Few Companies Are Expanding Third-Party Risk Management Programs Despite Increasing Threats

• Malwarebytes releases SMB Cybersecurity Trust & Confidence Report 2021

• FBI cleaned up malicious scripts from hundreds of Vulnerable US Computers

• All enterprises are at risk of mobile attacks says Check Point Software Technologies

• Why SMBs Must Conduct Rigorous Vendor Evaluation to Protect Themselves from Supply Chain Attacks

• 4 Steps to Perform a Website Security Audit

• Irish Regulator Investigates Facebook Over ‘Data Leak’

• AI Security: How Human Bias Limits Artificial Intelligence

• Google backs effort to bring Rust to the Linux kernel

• Better than the best password: How to use 2FA to improve your security

• Smuggling network connected to four deaths at sea dismantled in Spain

• 1-Click Hack Found in Popular Desktop Apps — Check If You’re Using Them

• April 2021 Security Patch Day fixes a critical flaw in SAP Commerce

• DNI’s Annual Threat Assessment

• Apple Again Rumored to Be Readying Third-Generation Apple Pencil

• Nvidia Unveils Data Centre ARM CPU Dubbed ‘Grace’

• McAfee Labs Report Reveals Latest COVID-19 Threats and Malware Surges

• Microsoft Continues to be Most Imitated Brand for Phishing Attempts in Q1 2021

• Google releases Chrome 90 with HTTPS by default and security fixes

• Months After Hack, US Poised to Announce Sanctions on Russia

• Cracked Version of few Software Steal Session Cookies and Monero Cryptocurrency

• Data Breaches, Class Actions and Ambulance Chasing

• Malware Variants: More Sophisticated, Prevalent and Evolving in 2021

• Apple Transporter and Microsoft Remote Desktop Gain Native M1 Mac Support

• University of Hertfordshire hit by cyberattack

• UK Regulator Provisionally Approves Virgin, O2 Merger

• Nvidia Unveils Data Centre ARM Chip Dubbed Grace

• Yuki Chan – Automated Penetration Testing and Auditing Tool

• Cado Security raises $10M for cloud cybersecurity forensics

• Keyfactor raises $125M and acquires PrimeKey to create a machine identity management platform

• Quick Hits: April 15

• FCW Insider: April 15, 2021

• Man Gets 10 Years for Multimillion-Dollar Medicare Fraud Scheme

• Europe’s Data Protection Guardians Green Light EU-UK Data Flows

• LinkedIn Data Leak: Hundreds of Thousands of Spam Emails Flood Users’ Inboxes

• Capcom Released the Final Update on Ransomware Attack

• YIKES! Hackers flood the web with 100,000 pages offering malicious PDFs

• New Zero-Day Vulnerability Found in Google Chrome and Microsoft Edge Posted on Twitter

• The password hall of shame (and 10 tips for better password security)

• Top cybersecurity M&A deals for 2021

• NVIDIA Unveils ‘Morpheus’ Cybersecurity Framework

• Global Attacker Dwell Time Drops to Just 24 Days

• Upcoming Event: Spectrum by Prisma Cloud

• Chrome 90 Defaults to HTTPS, Adds AV1 Codec for Optimized Video Conferencing

• Gurman: Apple’s ‘Spring Loaded’ Event Won’t Feature Anything ‘Particularly Innovative’

• Apple Supplier TSMC Says Global Chip Shortage Likely to Last into 2022

• 500 Million More Reasons to Talk About Facebook – Intego Mac Podcast Episode 183

• Australian government prefers education over prosecution to deter cyberbullying

• CISOs Must Focus on People and Technologies Amid Rising Attacks

• The Need for a Cybersecurity Protection Agency

• 75% of Leaders Lack Confidence in Their Web Application Security

• Heartbreak and Hacking: Dating Apps in the Pandemic

• Want to add antivirus to your existing portfolio?

• Linux, MacOS Malware Hidden in Fake Browserify NPM Package

• Enterprise Data Encryption Use Reaches Historic Highs

• For the second time in a week, a Google Chromium zero-day released online

• FBI removes web shells from compromised Exchange servers

• Machine learning-powered cybersecurity depends on good data and experience

• Open source security, license compliance, and maintenance issues are pervasive in every industry

• Cybersecurity and IT Consulting Firm SecureTech360 to Expand in Fairfax County, Create 10 New Jobs

• Hush – This Data Is Secret

• Under the Hood: Inside (ISC)² Exam Development Cycle

• Unpatched zero-day vulnerability Affecting Current Versions of Google Chrome & Microsoft Edge Published Online

• The future of touchless visitor management lies with biometrics

• Securing Your Supply Chain with CIS and Tripwire

• Beware of These 3 Scams Making the Rounds This Tax Season

• 48% of IT leaders accelerated automation projects

• The impact of the pandemic on AML compliance and fraud strategies

• Advice for aspiring threat hunters, investigators, and researchers from the old town folk

• Victorian government earmarks AU$30m to lift hospital cyber capabilities

• Irish Watchdog Opens Another Facebook Probe, Over Data Dump

• ISC Stormcast For Thursday, April 15th, 2021 https://isc.sans.edu/podcastdetail.html?id=7458, (Thu, Apr 15th)

• S2C Prodigy MDM Pro provides simultaneous debugging across multi-FPGAs

• Grid.ai platform enables researchers and data scientists to train AI models on the cloud

• 1Password Secrets Automation helps businesses secure and manage secrets

• Apple Celebrates Earth Day by Donating $1 for Every Apple Store Purchase Made With Apple Pay

• Important Strategies for Aligning Security With Business Objectives

• OpenText unveils Cloud Editions 21.2 to power modern work in the cloud

• Huntsman Security unveils its SIEM 7.0 in both an enterprise and MSSP release

• SmartBear integrates TestComplete with BitBar, enabling users to create a codeless mobile test

• Masergy enhances AIOps feature by applying AI and ML to optimize SaaS apps on global networks

• Is it still possible to run malware in a browser using JavaScript and Rowhammer? Yes, yes it is (slowly)

• Together for the Good of the Internet: eco Complaints Office Registers More Reports Than Ever Before

• Unpatched MS Exchange servers hit by cryptojacking malware

• 7 Practical Secure Coding Practices

• Logz.io announces support for OpenSearch project, an open source fork of Elasticsearch and Kibana

• IBM, Red Hat and Cobuilder create OpenBuilt platform to accelerate DX across the construction industry

• Vertosoft to offer Inkscreen’s mobile camera app to help govt employees keep data secure

• IDEMIA and INTERPOL renew existing contract to deliver fingerprint and facial recognition system

• Panasonic TOUGHBOOK 55 integrates Viasat Eclypt hard drives to protect data for the defense industry

• What to expect from Apple’s “Spring Loaded” event on April 20

• Here’s how the FBI managed to get into the San Bernardino shooter’s iPhone

• Rust in the Linux kernel

Generated on 2021-04-16 23:55:13.032075