IT Security News Daily Summary 2021-06-17

• A Billion CVS Records Exposed

• Australia Suffers Widespread Internet Outage

• Seven Words That Could Stall Any Woman’s Career Path

• Will Kormos on the Unique Qualities of His SDET Role

• Interview with Simon Phillips, experienced security practitioner and Humio customer

• Grafana Alerting in a Multi-cloud World

• Optimizing an Elm Library

• Hackers Can Spy on Peloton Workouts

• LORCA Announces New Intensive Program for Most Promising Cyber Startups

• 60% of Businesses Would Consider Paying a Ransomware Demand

• Puzzling New Malware Blocks Access to Piracy Sites

• Amazon Web Services Misconfiguration Exposes Half a Million Cosmetics Customers

• US Warns Russia of Cyber-Attack No-Go List

• Want to add antivirus to your existing portfolio?

• IT Security News Daily Summary 2021-06-16

• US Convicts Russian Malware-masker

• Deloitte Acquires Terbium Labs

• IAB Tech Lab Accused of “World’s Largest Data Breach”

• Members of Clop Ransomware Gang Arrested in Ukraine

• NHS Test and Trace Bolsters its Cybersecurity

• A Conversation with Arielle McKee on the Meaning of Pride

• Marketplace Selling Stolen Credentials Is Dismantled

• “Homeless Hacker” Arrested

• IoT Supply Chain Bug Hits Millions of Cameras

• Most Ransomware Victims Are Hit Again After Paying

• Football Fever Puts Password Security at Risk

• Penetration testing

• 5 Tips to Prevent and Mitigate Ransomware Attacks

• Security Camera Feeds Exposed Due to Flaw in SDK Used by Many Vendors

• OpManager makes network monitoring easy for Heritage Credit Union

• Apple Planned Black Ceramic Apple Watch Edition

• The Changing Trends In Cyber Security

• Ransomware Infects US Weapons Contractor

• New Cybereason Ransomware Study Reveals True Cost to Business

• Security Threats To Minimally Staffed/Abandoned Offices Post Pandemic – Expert Source

• Ensuring A Safer Web Browsing Experience: Using Ad Blockers To Fight Malvertising

• Avaddon Ransomware Gang Evaporates Amid Global Crackdowns

• EU Court Leaves Facebook More Exposed to Privacy Challenges

• Malware Attack on South Korean Entities Was Work of Andariel Group

• What We Can Learn from the Colonial Pipeline Breach

• Expert Insight On ALPACA Attack

• Expert Reaction On The World’s Largest Data Breach

• Tom Friedman on two key points Biden should discuss with Putin

• Papa don’t breach: UK data watchdog fines that other pizza place £10,000 over unsolicited marketing blitz

• CCSP: The Best Way to Achieve Cloud Security

• Unsecured servers and cloud services: How remote work has increased the attack surface that hackers can target

• Nasty Linux systemd root level security bug revealed and patched

• Researchers: Booming Cyber-Underground Market for Initial-Access Brokers

• How to Create a Post-Pandemic Data Security RFP

• Fitness Machines, Cyberattack Victims Too: Peloton Bike Plus System Vulnerability Detected

• Magecart are still going strong, join us and fight back!

• Peloton Bike+ Bug Gives Hackers Complete Control

• Alibaba Victim of Massive Data Leak as China Tightens Security

• Vulnerabilities Allow Hackers to Disrupt, Hijack Schneider PowerLogic Devices

• DuckDuckGo’s Quest to Prove Online Privacy Is Possible

• Akamai Platform Update: New Security Enhancements That Intelligently Automate Application and API Security, Mitigate Online Fraud, and Reduce Burden on Security Professionals

• VPNs and Trust

• Threat Activity Group RedFoxtrot Linked to China’s PLA Unit 69010; Targets Bordering Asian Countries

• Microsoft Adds Support for Detecting Jailbroken iOS Devices to Microsoft Defender for Endpoint

• Windows 10 To Be Retired In 2025, As Windows 11 Leaks

• TeaBot Trojan Steals Bank Details via Fake Antivirus Apps

• Mensa Data Leak was Due to Unauthorized Internal Download

• Some Apple Card Customers Unable to Make In-Store Purchases for Second Day in a Row [Resolved]

• Armis welcomes Crowdstrike’s Michael Carpenter to company Board

• Business security remains resilient in the wake of coronavirus

• The Source Code of Paradise Ransomware Released on a Hacking Forum

• What is Azure Confidential Ledger?

• Microsoft’s CISO: Why we’re trying to banish passwords forever

• Apple releases emergency update for older iPhones and iPads

• Flaws in STEM Conference Room Speakerphone Can Be Exploited to Spy on Users

• Cyber Attackers Faced a Denial After Fujifilm Refused to Pay Ransom

• WSJ: Apple Piloted Running Its Own Subscription Based Primary Healthcare Service With ‘Apple Doctors’

• Some Apple Card Customers Unable to Make In-Store Purchases for Second Day in a Row

• Ferocious Kitten: 6 years of covert surveillance in Iran

• Apple fixes actively exploited vulnerabilities affecting older iDevices

• AmeriGas Discloses 8-Second Data Breach

• 4 steps to prevent spear phishing

• Sir Tim Berners-Lee To Auction Web Source Code As NFT

• FCW Insider: June 16, 2021

• Ransomware Attackers Partnering With Cybercrime Groups to Hack High-Profile Targets

• Twitter May Let You ‘Unmention’ Yourself in Tweets and Prevent You From Being Tagged in Future Replies

• SEC settles with First American over massive leak of mortgage data, disclosure

• Most firms face second ransomware attack after paying off first

• Facebook awards $30,000 bounty for exploit exposing private Instagram content

• Ikea France Found Guilty in Employee Spying Scandal

• What’s New in v8 of the CIS Controls

• Disney+ Won’t Offer a Cheaper Ad-Supported Plan Anytime Soon

• 630 potential victims of exploitation identified during Europe-wide coordinated action days

• Top 8 Ways Attackers Can Own Active Directory

• Looking for adding new detection technologies in your security products?

• Cybersecurity for Cloud Applications in 2021

• AI bias and discrimination aplenty: Australian Greens want Online Safety Bill repealed

• Could Monero Replace Bitcoin in the Cybercrime World?

• Israeli Chief-of-Staff was Hacked by an Iranian State-Sponsored Cybercriminal

• Critical ThroughTek Flaw Opens Millions of Connected Cameras to Eavesdropping

• An Inside Look at How Hackers Operate

• The Hacker Mind Podcast Hits 10,000 Downloads

• ¿La nube se está acercando?

• Report Reveals AWS S3 Buckets are Poorly Protected

• Cyberium malware-hosting domain employed in multiple Mirai variants campaigns

• Two Companies Have to Pay $43,000 Over Private Information Breaches Impacting SAF and Mindef Employees

• Ransomware and Cyber Attacks were hot topics at G7 Summit

• Apple asks to ‘Move beyond Password’

• Android opens up earthquake alerts and end-to-end encrypted messages

• How to secure data one firewall at a time

• Understanding the cloud shared responsibility model

• Alibaba suffers billion-item data leak of usernames and mobile numbers

• Is Your Peloton Spinning Up Malware?

• A New Program for Your Peloton – Whether You Like It or Not

• Corporate attack surfaces growing concurrently with a dispersed workforce

• Hiring from Within and Retaining Cybersecurity Talent: Building Your Strategy

• Introducing AT&T USM Anywhere Advisors

• Effects of the pandemic on consumer security behaviors

• Poland Target of ‘Unprecedented’ Cyber Attacks: Govt

• Identity management is now mostly about security

• ISC Stormcast For Wednesday, June 16th, 2021 https://isc.sans.edu/podcastdetail.html?id=7544, (Wed, Jun 16th)

• Open source UChecker tool detects vulnerable libraries on Linux servers

• Alibaba suffers billion-user data leak of usernames and mobile numbers

• Gelsemium Hacker Group Attack Governments, Universities Using Various Hacking Tools

• Bad cybersecurity behaviors plaguing the remote workforce

• Impinj RAIN RFID reader chips address increasing demand for item connectivity

• Kensington’s cross-platform solutions enable secure biometric authentication for any device

• Microsoft takes down large‑scale BEC operation

• SmartBear expands API lifecycle development platform to backend Java developers

• Akamai’s enhancements expand possibilities for developers at the edge

• IDSA: Number of identities in the enterprise soared with remote work

• Video: Microsoft’s John Lambert on Better Information Sharing in Cybersecurity

• EdgeQ 5G chipset-as-a-service model allows customers to configure 5G and AI services

• Microchip PoE injector simplifies deployment of Wi-Fi 6 access points and small cell nodes

• Syniverse and AlefEdge support enterprises in creating their own 5G edge networks

• Cohere Technologies partners with VMware to help CSPs improve network and spectrum efficiencies

• Zscaler: Cloud infrastructure at risk from expanded attack surfaces

• GAO urges IRS to adopt tougher data security as TurboTax grapples with compromised accounts

• Mandiant On-Demand Cyber Intelligence Training builds cyber threat intelligence expertise

• Wipro and Oracle collaborate to help organizations migrate to the cloud

Generated on 2021-06-17 23:55:23.042501