IT Security News Daily Summary 2021-08-09

• cryptology

• Cmd: 74% believe threat detection is the biggest security challenge for digital transformation

• ‘Glowworm’ Attack Turns Power Light Flickers into Audio

• DOD moves to mandate COVID-19 vaccines by September

• How today’s secure web gateways enable essential work

• Pittsburgh’s mobility platform aims to expand transportation options

• The Company Behind Online Learning Platform Canvas Should Commit to Transparency, Due Process for Students

• ​​What to Do When Schools Use Canvas or Blackboard Logs to Allege Cheating

• Auth Bypass Bug Exploited, Affecting Millions of Routers

• Black Hat: Scaling Automated Disinformation for Misery and Profit

• Martial Arts Instructor Accused of Spying on Students

• Financial Services is Ahead of Most Other Critical Infrastructure Sectors, but For How Long?

• Testing Apple’s New Standalone Touch ID Keyboard With an M1 Mac

• Ransomware demands and payments reach new highs

• What Is Cyber Liability Insurance?

• Survey Finds API Security Incidents on the Rise

• Coming Soon to Apple Arcade: Zookeeper World, Zen Pinball Party, and Fantasian Part 2

• How to find and remove spyware from your phone

• New Android Trojan Hijacks Social Media

• Purple Teaming is More Than Just Red & Blue Team Collaboration

• Facebook Rolls Out New Prayer Tool Amidst Privacy Concerns

• Don’t Let the ‘I Quit’ Economy Slow Down Your Enterprise

• Deals: Best Buy Introduces All-Time Low Prices on iPad Air, iPad Pro, Apple Pencil 2, and More

• Apple Open to Expanding New Child Safety Features to Third-Party Apps

• Keeping Your System Secure is Easier than Ever with LinuxSecurity Customized Advisories!>

• DHS Called On Hackers to Join Government During Black Hat Speech

• Robert M. Lee’s & Jeff Haas’ Little Bobby Comic – ‘WEEK 341’

• COVID Anti-Vaxxers Make $$$ from Crowdfunding

• Zero Trust for insider access

• ‘Bad Monkey’ Series Starring Vince Vaughn Coming to Apple TV+

• The Anatomy of a Screw Up: The Biden Eviction Moratorium Saga

• Home routers are being hijacked using vulnerability disclosed just 2 days ago

• How to Protect Your SMB from Cyber Attacks? 5 Effective Ways

• Vulnerability Summary for the Week of August 2, 2021

• Why penetration testing needs to be part of your IoT security

• Healthcare Under Siege: Should Hospitals Pay Hackers Ransom?

• Android Malware ‘FlyTrap’ Hijacks Facebook Accounts

• Malicious Android apps try to hijack your Facebook account

• How to pick a high-security video conferencing platform

• A Deeper Dive Into Zero-Trust and Biden’s Cybersecurity Executive Order

• Experts Discover Promotheus TDS, An Underground MaaS

• Ask the Expert: How has audit’s role in evaluating third-party risk changed in the last year?

• Security BSides Athens 2021 – Talk 15: Michael McGinley’s ‘Parting Ways With Purdue? The Effect Of Industry 4.0 On ICS Security Arc’

• StealthWorker botnet targets Synology NAS devices to drop ransomware

• Understanding Ransomware

• You can be taxed for buying a cup of coffee using a crypto credit card, but there are ways around it

• UK NCSC says to ‘Think Random’ on passwords

• Is Malware Still a Threat to a Mac in 2021?

• BlackMatter Ransomware Gang Evolves To Target VMware ESXi Servers

• The ‘Interaction-Less’ Flaws in Messaging Apps Allowed Hackers to Eavesdrop

• 5 Steps to improving your Secure Scorecard

• Apple Responds to Call Center Worker Complaints About Plans to Monitor Them With Cameras at Home

• Simplifying Titan Security Key options for our users

• Phishing Sites Targeting Scammers and Thieves

• Virtual Vaccination Card Prompts Cybersecurity Fears

• How to Present Cybersecurity to Your Board of Directors

• FatalRAT: New Trojan Leveraging Telegram

• Gigabyte Suffers Data Breach Following Ransomware Attack

• OT Security Firm SIGA Raises $8.1 Million in Series B Funding Round

• Transparency after a cyber attack: How much is too much?

• City of Joplin paid a 320K ransom after a ransomware Attack

• Apple Surveys 12-Inch MacBook Users for Opinions on Size, Features, and More

• FOID Website Breach Attempt: Hackers Tried to Access Private Data

• The Go and Rust “net” Library Was Affected by a Critical IP Address Validation Vulnerability

• Buying coffee with bitcoin using a crypto credit card is a taxable event, but there are ways around it

• Build your own Android security product

• 1M Stolen Bank Credit/Debit Card Data Available For Free in Underground Markets

• BHUSA: Windows Hello Passwordless Bypass Disclosed

• Apple Reportedly Bidding on Film Starring Jennifer Lawrence as Hollywood Agent

• Cinobi Banking Trojan Targets Cryptocurrency Exchange Users via Malvertising

• 7 Savvy Ways Senior Adults Can Safeguard Digital Privacy

• Why major fintech players are already embracing open API standards (VB Live)

• Behind the scenes: A day in the life of a cybersecurity “threat hunter”

• Vulnerability Affecting Routers From Many Vendors Exploited Days After Disclosure

• Average Ransomware Demands Surge by 518% in 2021

• Users Can Be Just As Dangerous As Hackers

• A Critical Random Number Generator Flaw Affects Billions of IoT Devices

• Malicious Life Podcast: The Jester – Hacktivist for Good

• XDR: The Next Step in Threat Detection and Response

• Gartner SOAR Magic Quadrant: When, Where and How?

• AWS And Google Cloud Shut Down Spying Vulnerability

• New Glowworm Attack Recovers Audio From Devices’ Power LEDs

• Researchers Find Root Access Vulnerabilities In Kindle E-Books

• Deals: Verizon’s Back To School Event Includes Savings on iPhone 12, Apple Watch Series 6, and More

• 44% of iPhone Users Intend to Upgrade to iPhone 13, Survey Shows

• Deals: Apple TV HD With New Siri Remote Drops to Record Low Price of $129.98 on Amazon ($19 Off)

• Even With iOS 15 Coming Soon, Apple Appears to Be Working on an iOS 14.8 Update

• Did the Justice Department Give President Biden Legal Advice on the CDC Eviction Moratorium?

• Cutting Through the Noise from Daily Alerts

• Joplin: City Computer Shutdown Was Ransomware Attack

• Beware! New Android Malware Hacks Thousands of Facebook Accounts

• SECURITY ALERT: Conti Ransomware Restrains Compromised Customers with Legitimate RC Software

• 10 business-proven benefits of digital faxing

• Report Remove, the tool that eliminates nude images shared online

• Need a super-secure way to transport data? Check out the Apricorn Aegis Padlock SSD

• Want a strong password? You’re probably still doing it the wrong way

• Ransomware Groups Never Perish, They Reincarnate

• FTC Issued a Warning About Phishing Scams Involving Unemployment Benefits

• The Pitfalls of Poor Software Implementation

• Tech Giant GIGABYTE Suffered Ransomware Attack

• Having Fun Online: How Does Copyright Work When It Comes To Memes

• Apple plan to scan users’ iCloud photos raises new fears of government-mandated data access

• Introducing Data Watch: Detect Magecart style attacks, fast!

• Cybersecurity M&A Roundup for August 1-8, 2021

• Australian Cyber Security Centre warns of a surge of LockBit 2.0 ransomware attacks

• Apple Reportedly Sent Team of Employees to South Korea to Discuss Apple Car Development

• Australia Faces an Increase in LockBit Ransomware Attacks

• A week in security (August 2 – August 8)

• Internet Scanned for Microsoft Exchange Servers Vulnerable to ProxyShell Attacks

• May 2021 saw a 440% increase in phishing, the single largest phishing spike on record

• Facebook Vs. NYU and Transparency

• Apple Publishes FAQ to Address Concerns About CSAM Detection and Messages Scanning

• Apple Seeking to Expand iOS 15 Beta Testers as Official Public Release Looms

• Cyber Fraud Attacks on Professional Channels | Avast

• Check Point Harmony Mobile named a Market Leader in Omdia’s 2021 Market Radar

• Google’s new tool helps you find abandoned cloud projects and delete them

• How Tripwire State Analyzer Can Help You to Comply with NERC CIP

• House of Commons (HoC) Beefs up Cyber Training Following Matt Hancock CCTV Leak Scandal

• Exploited Vulnerability Targets Arcadyan Firmware Routers

• Real IT leadership: Selling the transformative dream

• Google Nest Doorbells, Cameras Get Battery Power In Revamp

• Huawei Reports Biggest-Ever Revenue Drop

• Regulator ‘Disappointed’ With Facebook Over NYU Fracas

• Didi ‘Considers’ Data Deal With State-Backed Company

• Checkmarx’s Dustico acquisition bolsters the open source software supply chain

• Apple Revives Encryption Debate With Move on Child Exploitation

• NCSC Sticks by ‘Three Random Words’ Strategy for Passwords

• CISO job satisfaction: Finding meaning in the mission

• The most dangerous (and interesting) Microsoft 365 attacks

• Welcoming the Turkish Government to Have I Been Pwned

• Pulse Secure VPNs Get New Urgent Update for Poorly Patched Critical Flaw

• Apple Publishes FAQ to Address CSAM Detection and Messages Scanning Concerns

• Ransomware Explained. What It Is and How It Works

• Weibo Removes Celebrity List Amidst China Social Media Crackdown

• SpaceX Assembles Biggest Rocket Ever Constructed

• Insider Leaks Data From Conti Ransomware Group

• Amazon Kindle Exposed to Malicious eBooks

• 14-inch and 16-inch MacBook Pros Finally Enter Mass Production

• Google extends COVID Card vaccination certificate to Australia

• Trying to register your antivirus in Windows Security Center?

• Combat Ransomware With a Bottomless Cloud Mindset

• Threat actors are probing Microsoft Exchange servers for ProxyShell flaws

• Ask Chloé: Reducing Biased Language in Job Descriptions

• Security matters when the network is the internet

• Australian Electoral Commission is seeking a new Senate ballot scanning solution

• Why ransomware is such a threat to critical infrastructure

• RansomEXX Ransomware hits Gigabyte

• HackerU acquires Cybint for $50 million

• Sharing knowledge and moving towards securing all the things!

• ACCC hauls Telstra, Optus, and TPG to court on alleged misleading NBN FttN speed claims

• How to harden Kubernetes systems and minimize risk

• Managing digital certificates still a challenge, automation lagging

• Black Hat security conference returns to Las Vegas – complete with hacks to quiet the hotel guest from hell

• Most organizations are at an elevated risk of attack

• Remember a Polaroid? Why This Matters and How Tripwire Keeps this Tradition Alive

• Open source software plays an important role in the success of leading organizations

• Canberra asks big tech to introduce detection capabilities in encrypted communication

• Scoping cloud environments: Tips and best practices

• Report: The State of Pentesting 2021

• Apple child abuse material scanning in iOS 15 draws fire

• #DEFCON: Exploiting Physical Shopping Carts for Denial of Shopping

• #DEFCON: Exploiting Vulnerabilities in the Global Food Supply Chain

• Elastic updates Elastic Stack and Elastic Cloud to make data onboarding and management more secure

• Best LastPass Alternatives: Compare Password Managers

• IT Security News Weekly Summary – Week 31

• IT Security News Daily Summary 2021-08-08

• 1M compromised cards available for free in the underground market

• Apple Engineers Reportedly Pessimistic About Apple’s Living Room Hardware Strategy

• Black Hat USA 2021 & DEF CON 29 Highlights & Key Takeaways>

• Security BSides Athens 2021 – Talk 14: Michalis Michalos’ ‘Cyber Resilience: Awareness Is Not Enough’

• Security BSides Athens 2021 – Talk 13: Avinash Jain’s ‘Shift Left With Devsecops: Scanning Every Single Code Change’

• XKCD ‘Abandonment Function’

• International Security Implications of Central Bank Digital Currencies

• S3 Ep44: Unreported holes, retro computing, and tech support for malware [Podcast]

• Taiwanese Computer Hardware Company Gigabyte Suffers Ransomware Attack

• Lithuania has experienced 1,780 cyber incidents in six months

• Security Affairs newsletter Round 326

• What You Should Know About the Google Play Store Changes

• Managing Entitlements and Access in the Cloud is a Leading Security Risk

• Providing Access to Corporate Apps from Untrusted PCs: What’s the Difference between Hysolate and Windows 365?

• Telegram For Mac Bug Could Allow Saving Self-Destructing Messages

• Kindle’s E-book Vulnerability Could Have Been Exploited to Hijack a User’s Device

• Cisco: Firewall Manager RCE Flaw is a Zero-day, Patch Arriving Soon

• Week in review: Clever Office 365 phishing, 2021 CWE Top 25, Patch Tuesday forecast

• A zero-day RCE in Cisco ADSM has yet to be fixed

• Penetration testing

• Multilingual Cybersecurity Awareness Training adapted for your needs

• READY for What’s New at (ISC)² Security Congress in 2021?

• #DEFCON: Why Social Media Security is Election Security

• Spectral DeepConfig detects software misconfigurations at all layers to prevent breaches

• Web Application Penetration Testing Checklist – A Detailed Cheat Sheet

• #DEFCON: Hacking RFID Attendance Systems with a Time Turner

• OrderSnapp – 1,304,447 breached accounts

• Qualys scans Red Hat Enterprise Linux CoreOS on Red Hat OpenShift to reduce risk

• ACI Worldwide expands alliance with Microsoft to deliver payments solutions in the cloud

• MMG Fusion – 2,660,295 breached accounts

Generated on 2021-08-09 23:55:24.092108