IT Security News Daily Summary 2022-05-20

• Schools should prep for ransomware with response and comms plans, experts say

• Friday Squid Blogging: Squid Street Art

• Large-Scale Attack Targeting Tatsu Builder WordPress Plugin

• What the U.S. government’s security testing protections mean for enterprises

• SentinelOne vs Palo Alto: Compare EDR software

• Pwn2Own Vancouver 2022 D2

• China-linked Twisted Panda caught spying on Russian defense R&D

• Sandworm deploys new version of ArguePatch malware loader

• Cryptocurrency: secure or not? – Week in security with Tony Anscombe

• Partial Patching Still Provides Strong Protection Against APTs

• Chatbot Army Deployed in Latest DHL Shipping Phish

• The War Over Ukraine—On Wikipedia

• Carbon Black vs. CrowdStrike: EDR software comparison

• Check your privilege: The critical principle for keeping your SaaS data safe

• What the US government’s new CFAA policy means for enterprises

• How XDR can identify and fill the cracks in state and local government’s cybersecurity posture

• Cities that hyped crypto are now contending with the crash

• Quantum Key Distribution for a Post-Quantum World

• What Is DNS Spoofing and How Can You Prevent It?

• The new Air Force Ones are late, so the old planes need more cash, official Says

• Chinese Hackers are Targeting Russian Aerospace Industry

• New DOJ guidance on key hacking law creates carve out for security researchers

• Beware of Fake Windows 11 Downloads Distributing Vidar Malware

• Why you should act like your CEO’s password is “querty”

• Microsoft Rushes a Fix After May Patch Tuesday Breaks Authentication

• Why AI and autonomous response are crucial for cybersecurity (VB On-Demand)

• EPA seeks funding to improve the cybersecurity of America’s water systems

• State and local governments turn to normalizing the ‘new normal’ workplace

• McAfee vs Kaspersky: Compare EDR software

• Pro-Russian Hackers Hit Critical Government Websites in Italy

• All White Hat hackers exempted from US CFAA Prosecution

• Developing Data Security Practices Before, During, and After Cloud Migrations

• USB Devices Redux

• China has signaled easing of its tech crackdown — but don’t expect a policy U-turn

• Energy Department provides $53M for climate change tech

• This app shows you how to make your iPhone more secure better than Apple does

• DoJ: White Hat Hackers Will No Longer Face Prosecution

• Putin Promises To Bolster Russia’s IT Security In Face Of Cyber Attacks

• DOJ Announces It Won’t Prosecute White Hat Security Researchers

• 380K Kubernetes API Servers Exposed To Public Internet

• Strapi Exposed Data, Password Reset To Unprivileged Users

• Global Food Supply Chain At Risk From Malicious Hackers

• The activity of the Linux XorDdos bot increased by 254% over the last six months

• Pwn2Own – Windows 11, Microsoft Teams Hacked & Exploiting 16 Zero-day Bugs

• Microsoft’s out-of-band patch fixes Windows AD authentication failures

• US Government says: Patch VMware right now, or get off our network

• (ISC)² Entry-Level Cybersecurity Certification Pilot Exam Reaches 1,000 Exam Milestone

• Boeing Starliner Launches Successfully, On Route To International Space Station

• Going passwordless: Q&A with Microsoft’s CVP of security, Vasu Jakkal

• Authentication Is Static, Yet Attackers Are Dynamic: Filling the Critical Gap

• Top Technology Trends in Education 2022

• Packaged zero-day vulnerabilities on Android used for cyber surveillance attacks

• Report: Frequency of cyberattacks in 2022 has increased by almost 3M

• Closing the Gap Between Application Security and Observability

• Microsoft patches the patch that broke Windows authentication

• Nikkei Says Customer Data Likely Impacted in Ransomware Attack

• Two business-grade Netgear VPN routers have security vulnerabilities that can’t be fixed

• Nonprogrammers are building more of the world’s software – a computer scientist explains ‘no-code’

• New Brute Force Attacks Against SQL Servers Use PowerShell Wrapper

• New Open Source Project Brings Consistent Identity Access to Multicloud

• Costa Rica’s New Government is Under Attack by a Conti Ransomware Gang

• DoJ Will No Longer Use CFAA to Charge Ethical Hackers

• Introducing new cloud resources page for Cisco Secure Firewall

• Conti Ransomware Shuts Down and Rebrands Itself

• Microsoft Bing censors politically sensitive Chinese terms

• Apple Accused By Union Of Staff Law Violations At NY Store

• Microsoft: This botnet is growing fast and hunting for servers with weak passwords

• Fake domains offer Windows 11 installers – but deliver malware instead

• Does disk encryption slow down your PC? [Ask ZDNet]

• 380K Kubernetes API Servers Exposed to Public Internet

• Microsoft Warns Rise in XorDdos Malware Targeting Linux Devices

• Bluetooth Flaw Allows Remote Unlocking of Digital Locks

• 5 Essential Ways to Improve SDLC Security

• Modern “Smart” Farm Machinery Vulnerable to Cyber-Attackers

• Researchers Uncover Rust Supply-Chain Attack Targeting Cloud CI Pipelines

• Cytrox’s Predator Spyware Target Android Users with Zero-Day Exploits

• Microsoft Bing censors politically sensitive Chinese terms internationally, reports Citizen Lab

• Canada To Join Five Eyes 5G Ban On Huawei/ZTE

• Hackers Exploiting VMware Horizon to Target South Korea with NukeSped Backdoor

• Conti ransomware is shutting down operations, what will happen now?

• Conti ransomware group disbands

• Ransomware Hits Media Giant Nikkei’s Asian Unit

• How To Do A Virus Scan

• From Bitcoin to the Metaverse: The current evolution is a revolution

• 6 Steps for Construction Project Recovery

• UK Sextortion Cases Doubled in 2021

• “Alarming” Surge in Conti Group Activity This Year

• India reaffirms commitment to new cybersecurity rules

• Weekly Update 296

• SSI and FIDO2: Different approaches for a passwordless world

• Protecting data now as the quantum era approaches

• Virtual product placements revealed by streaming platforms

• IT and Security leaders are sharing passwords in shared documents folders

• QNAP storage devices again hit by Deadbolt Ransomware

• Hackers Trick Users with Fake Windows 11 Downloads to Distribute Vidar Malware

• Canada bans Huawei and ZTE from 5G networks, citing national security risks

• New infosec products of the week: May 20, 2022

• TD SYNNEX Expands Solution Offering with Google Cloud

• LegalShield Partners with NEWITY to Empower, Protect and Equip Small Businesses with Legal Services and Solutions

• Cloud Security Alliance Provides C-level Executives With Best Practices for Deploying Smart Contracts Within an Organization

• (ISC)² Hellenic Chapter Wins Award for Creating Educational Materials

• Endpoint security and remote work

• New DOJ guidance on enforcing hacking laws carves out safe space for security research

• India slightly softens infosec incident reporting and data retention rules

• How to ensure that the smart home doesn’t jeopardize data privacy?

• Email is the riskiest channel for data security

• QNAP Urges Users to Update NAS Devices to Prevent Deadbolt Ransomware Attacks

• Record level of bad bot traffic contributing to rise of online fraud

• The flip side of the coin: Why crypto is catnip for criminals

• Splashtop Enterprise enhancements improve technician and end user communication

• Calix updates its Intelligent Access EDGE platform to secure subscriber-facing network

• QuProtect offers protection against current and future quantum computing threats

• Twitter to hide misleading tweets under new crisis response policy

• Red Hat boosts performance for cloud-native application development with new portfolio updates

• Allegro Network Multimeters 3.5 allows users to analyze TCP down to packet level

• Canada to ban Huawei and ZTE and tell telcos to rip out 5G and 4G equipment

• US won’t prosecute ‘good faith’ security researchers under CFAA

• U.S. Agencies Ordered to Fix Critical VMware Vulnerabilities by Monday

• INKY partners with GoDaddy to enhance email security for businesses

• Cohesity and Palo Alto Networks join forces to improve cyber resilience for organizations

• Living Security and Gradient Cyber deliver awareness training to small businesses and midmarket enterprises

• Intrinsic ID appoints Reed Hinkel as VP of Business Development

• CipherMode Labs raises $6.7 million and launches CipherCore

• Dig emerges from stealth and raises $11 million to secure data in public clouds

• Citrix collaborates with Microsoft to help companies accelerate their digital transformations

• New Bluetooth hack can unlock your Tesla—and all kinds of other devices

• 2 vulnerabilities with 9.8 severity ratings are under exploit. A 3rd looms

• Why you should be using secure DNS on your Chromebook

• Downloading Pwned Passwords Hashes with the HIBP Downloader

• Mitek names Chris Briggs as Head of Product

• Brian Penney joins Blumira as VP of Sales

• Gigamon hires Mark Coates as VP EMEA

• Talon Cyber Security appoints Admiral Mike Rogers to its Board of Advisors

• Mario Espinoza joins Illumio as CPO

• New online hub to help cities apply for federal infrastructure funding

• DOJ’s New CFAA Policy is a Good Start But Does Not Go Far Enough to Protect Security Researchers

• QNAP devices hit by DeadBolt ransomware again

• Deadbolt Ransomware Targeting QNAP NAS Devices

• More Than 1,000 Cybersecurity Career Pursuers Complete the (ISC)² Entry-Level Cybersecurity Certification Pilot Exam

• IT Security News Daily Summary 2022-05-19

• Report: Only 13.6% of tech leaders believe they’ve ‘mastered’ cloud security

• Senators push for $300M boost to TMF

• US Justice Department won’t prosecute white-hat hackers under the CFAA

• Jupiter Plugin Flaws Enable Hackers to Hijack Websites

• Pentagon wants to take the time to get major cloud awards ‘right,’ CIO says

• Two of Peru’s Top ISPs Improve Transparency Practices, While Two Competitors Lag Behind, New Hiperderecho’s Report Shows

• US recovers a record $15m from the 3ve ad-fraud crew

• How a Virginia county wooed Amazon and Boeing

• How to conduct a cyber-war gaming exercise

• Pro-Russian Information Operations Escalate in Ukraine War

• Improved functionality and new features to help enhance the user experience

• The State of Kubernetes Security in 2022

• Red Hat releases open source StackRox to the community

• Pwn2Own 2022 – Windows 11, MS Teams and Firefox Pwned on Day 1

• OPM issues guidance on implementing Trump-era hiring policy

• US Justice Department says it won’t prosecute white-hat hackers under the CFAA

• Small businesses under fire from password stealers

• DoJ Won’t Charge ‘Good Faith’ Security Researchers

• Twitter To Hide Tweets That Share False Information During A Crisis

• PWN2OWN 2022 – Windows 11, MS Teams and Firefox Pwned on Day 1

• Majority of Kubernetes API Servers Exposed to the Public Internet

• Nvidia releases security update for out-of-support GPUs

• Trackers may collect data that you type even before hitting submit

• Miami taps smart tech to verify commercial water use

• Fortinet vs Palo Alto: Comparing EDR software

• Dig Exits Stealth With $11M for Cloud Data Detection and Response Solution

• CrowdStrike vs Sophos: EDR software comparison

• VeeamON 2022: Backup and security union emerges as top trend

• U.S. DOJ will no longer prosecute good-faith security researchers under CFAA

• Boeing Starliner Test Flight Readied For Tonight

• New Robo-Dialing Campaign Lets Users Prank Call Russian Bureaucrats

• Biden says agencies will be ready for hurricane season. But a watchdog is warning of shortfalls

• Researchers Spot Supply Chain Attack Targeting GitLab CI Pipelines

• Pro-Russian Hackers Spread Hoaxes to Divide Ukraine, Allies

• Top SD-WAN Solutions for Enterprise Security

• Google OAuth client library flaw allowed to deploy of malicious payloads

• Legislation promoting cyber collaboration between DHS and states awaits Biden signature

• CISA Issues Emergency Directive for VMware Vulnerabilities

• Private Data of Europeans Shared 376 Times Daily in Ad Sales

• ISG Adds Cybersecurity Pricing Data to ISG ProBenchmark® Platform

• CyberSheath Partner Program Delivers CMMC Compliance Across the Defense Industrial Base

• ServiceNow Named a Leader in Third-Party Risk Management Platforms

• CLOUD: A SHAKESPEAREAN DRAMA?

• How and why you should secure APIs

• New Phishing Attack Targets Windows Systems With Three Infostealers

• New Exploit Emerges For A Previously Patched SharePoint Vulnerability

• Reasons Why Everyone Should Use A VPN

• Serious Command Injection Vulnerability Found In Zyxel Firewalls

• Microsoft Warns of Malware Campaign Targeting SQL Servers Using Brute Force

• How 5G can transform public safety

• Report: Facebook Is Struggling To Remove Videos Of Buffalo Shooting

• Spyware Vendors Target Android With Zero-Day Exploits

• ISC Releases Security Advisory for BIND

• Who is UNC1756 – the hacker threatening Costa Rica?

• Rise in XorDdos: A deeper look at the stealthy DDoS malware targeting Linux devices

• Cyber Space has become a new domain for warfare, says Microsoft

• ISC Releases Security Advisory for BIND

• New Bluetooth Hack Could Let Attackers Remotely Unlock Smart Locks and Cars

• Hot Glare Of The Spotlight Doesn’t Slow BlackByte Ransomware Gang

• Two Military Satellites Just Communicated Using Space Lasers

• Iran, China-Linked Gangs Join Putin’s Disinformation War Online

• This Russian Botnet Does Far More Than DDoS Attacks – And On A Massive Scale

• Homeland Security Pushes Pause On New Disinformation Board

• September 13 Slated For iPhone 14 Launch – Report

• Twisted Panda: Check Point Research unveils a Chinese APT espionage campaign against Russian state-owned defense institutes

• CISA Releases Analysis of FY21 Risk and Vulnerability Assessments

• Pwn2Own Vancouver 2022 D1: MS Teams exploits received $450,000

• 3 Recommendations to Ensure Your API Security Solution can Drive Data Visibility and Quality

• Researcher Spotlight: Hector Peralta’s Evolution from Popcorn Server to the MSRC Leaderboards

• How iPhones can run malware even when they’re off

• Texas Social Media Law Battle Heads To Supreme Court

• See How Dell’s Computer Vision is Reinventing the Fan Experience

• CISA Releases Analysis of FY21 Risk and Vulnerability Assessments

• Powers Trials Commence at Grand Ethiopian Renaissance Dam Despite Stalled Negotiations and Regional Tensions

• Privacy Shield 2.0 —Third Time’s the Charm?

• The Chatter Podcast: “The Man Who Fell to Earth” with Jenny Lumet and Alex Kurtzman

• Israel’s Supreme Court Issues Regressive Judgment on West Bank Deportations

• Can I Trust You? Online Fraud Boom Casts Doubt Over Brands’ Ability To Protect Consumers’ Digital Identities

• Britain Can Legally Launch Cyberattacks Against Hostile States, Experts Reaction

• Texas State Dept. Of Insurance Consumer Data Breach

• Omnicell Suffers Ransomware Attack, Impact To Internal Systems

• Apple Launched a Safety Fix for a Zero-day Flaw

• Automating Alert Triage and Threat Hunting with Intezer + SentinelOne

• Apple spits at Facebook, Google and, oh, the whole internet really

• Cyberattacks and misinformation activity against Ukraine continues say security researchers

• LimaCharlie Banks $5.45 Million in Seed Funding

• QuSecure Lauches Quantum-Resilient Encryption Platform

• Phishers Add Chatbot to the Phishing Lure

• Ransomware Targets Higher Education Institutions

• Iran, China-linked gangs join Putin’s disinformation war online

• Privacy and the 7 Laws of Identity

• Malicious Reconnaissance: What It Is and How To Stop It

• This Russian botnet does far more than DDoS attacks – and on a massive scale

• Threat actors compromising US business online checkout pages to steal credit card information

• S3 Ep83: Cracking passwords, patching Firefox, and Apple vulns [Podcast]

• Microsoft President: Cyber Space Has Become the New Domain of Warfare

• Phishing Attacks for Initial Access Surged 54% in Q1

• 6 Scary Tactics Used in Mobile App Attacks

• How to Decorate a Room With Simple Things

• Critical Vulnerability in Premium WordPress Themes Allows for Site Takeover

• 7 Key Findings from the 2022 SaaS Security Survey Report

• Cardiologist moonlighted as successful ransomware developer

• Apple Loses Senior Executive Over Remote Working Policy – Report

• Report: 80% of cyberattack techniques evade detection by SIEMs

• Cloud Data Security Firm Dig Emerges From Stealth With $11 Million in Funding

• China-linked Space Pirates APT targets the Russian aerospace industry

• VMWare vulnerabilities are actively being exploited, CISA warns

• How Secure is the Bitcoin Blockchain?

• Attackers Can Unlock Tesla Cars and Smart Devices by Exploiting Bluetooth Flaws

• Phishing gang that stole over 400,000 Euros busted in Spain

• QuSecure releases first end-to-end post-quantum solution

• Dig launches cloud data detection and response platform

• Two million Texans have their details exposed

• 10 ways attackers gain access to networks

• Websites that Collect Your Data as You Type

• ITG23 Crypters Highlight Cooperation Between Cybercriminal Groups

• Malicious hackers are finding it too easy to achieve their initial access

• US Recovers $15 Million From Ad Fraud Group

• Specialists Spend a Lot of Time Fixing Security Flaws that Could Have Been Prevented

• Uncovering a Kingminer Botnet Attack Using Trend Micro™ Managed XDR

• Detect Azure AD Hybrid Cloud Vulnerabilities

• UK Can Legally Launch Cyberattacks Against Hostile Nations, Says AG

• The quantum menace: Quantum computing and cryptography

• CISA: Hackers Will Quickly Start Exploiting Newly Patched VMware Vulnerabilities

• Enterprise Data Protection Company Seclore Raises $27 Million

• High-Severity Bug Reported in Google’s OAuth Client Library for Java

• Jupiter Plugin Vulnerabilities Enable Hackers to Hijack Websites

• Data-centric Security: Defense in Depth

• Uncovering a Kingminer Botnet Attack Using Trend Micro™ Managed XDR

• WFH Unprotected: How Organizations Can Keep Their Employees and Their Business Safer

• A Guide to Identity Theft Statistics for 2022

• Phishing Campaigns featuring Ursnif Trojan on the Rise

• Bad Bots Swarm the Internet in Record Numbers in 2021

• VMware issues critical fixes, CISA orders federal agencies to act immediately (CVE-2022-22972)

• Hot glare of the spotlight doesn’t slow BlackByte ransomware gang

• The Pros and Cons of Sideloading Apps on iOS – Intego Mac Podcast Episode 240

• Uncovering a Kingminer Botnet Attack Using Trend Micro™ Managed XDR

• Patch these vulnerable VMware products or remove them from your network, CISA warns federal agencies

• Uncovering a Kingminer Botnet Attack Using Trend Micro™ Managed XDR

• LPM hack: Just because an iPhone is powered off doesn’t mean it’s safe

• Microsoft Teams Exploits Earn Hackers $450,000 at Pwn2Own 2022

• Half of IT Leaders Store Passwords in Shared Docs

• What Is a Supply Chain Attack?

• Uncovering a Kingminer Botnet Attack Using Trend Micro™ Managed XDR

• Ransom Demands Surge 45% in 2021

• Uncovering a Kingminer Botnet Attack Using Trend Micro™ Managed XDR

• Uncovering a Kingminer Botnet Attack Using Trend Micro™ Managed XDR

• The cyber threat isn’t going anywhere, but the fight back starts in London

• Uncovering a Kingminer Botnet Attack Using Trend Micro™ Managed XDR

• Web Trackers Caught Intercepting Online Forms Even Before Users Hit Submit

• Uncovering a Kingminer Botnet Attack Using Trend Micro™ Managed XDR

• CISA orders federal agencies to fix VMware CVE-2022-22972 and CVE-2022-22973 flaws

• Your snoozing iOS 15 iPhone may actually be sleeping with one antenna open

• Uncovering a Kingminer Botnet Attack Using Trend Micro™ Managed XDR

• VMware Releases Patches for New Vulnerabilities Affecting Multiple Products

• Uncovering a Kingminer Botnet Attack Using Trend Micro™ Managed XDR

• Cyber Attack disrupts core communication systems at Washington Local Schools

• Tesla Chief Elon Musk wants Twitter to eliminate 20% of BOT accounts for cybersecurity reasons

• Uncovering a Kingminer Botnet Attack Using Trend Micro™ Managed XDR

• Many security engineers are already one foot out the door. Why?

• SentinelOne Announces Fiscal First Quarter 2023 Financial Results Conference Call Date and Participation in Upcoming Investor Conference

• CoreStack and Ingram Micro Cloud Come Together to Deliver Next-Gen FinOps and Cloud Governance

• You Can Join the (ISC)² Board of Directors

• What to look for in a vCISO as a service

• Uncovering a Kingminer Botnet Attack Using Trend Micro™ Managed XDR

• 2022-05-18 – Pcap and malware for ISC diary: EXOTIC LILY –> Bumblebee –> Cobalt Strike

• Prioritize patching vulnerabilities associated with ransomware

• Uncovering a Kingminer Botnet Attack Using Trend Micro™ Managed XDR

• 46% of organizations still store passwords in shared documents

• Uncovering a Kingminer Botnet Attack Using Trend Micro™ Managed XDR

• How do DevSecOps professionals feel about security becoming an around the clock job?

• Uncovering a Kingminer Botnet Attack Using Trend Micro™ Managed XDR

• Kali Linux 2022.2 Release With New Hacking Tools & Updates

• Fake news – why do people believe it?

• Deepfence Cloud protects cloud native applications and infrastructure against cybersecurity threats

• Skybox Security unveils cyber risk quantification capabilities to help users prioritize critical threats

• Barracuda Cloud Application Protection enhancements improve web application and API security

• Uncovering a Kingminer Botnet Attack Using Trend Micro™ Managed XDR

• Lacework introduces new features to provide security in Kubernetes environments

• Fusion Risk Management strengthens its offerings for technology and data service providers

• Uncovering a Kingminer Botnet Attack Using Trend Micro™ Managed XDR

• Uncovering a Kingminer Botnet Attack Using Trend Micro™ Managed XDR

• Microchip unveils CEC1736 Trust Shield family to offer protection against rapidly evolving security threats

• Patch your VMware gear now – or yank it out, Uncle Sam tells federal agencies

• Uncovering a Kingminer Botnet Attack Using Trend Micro™ Managed XDR

• Evasive Bots Drive Online Fraud – 2022 Imperva Bad Bot Report

• Uncovering a Kingminer Botnet Attack Using Trend Micro™ Managed XDR

• SecZetta and Active Cyber help clients optimize their third-party identity governance processes

Generated on 2022-05-20 23:55:32.081618

Liked it? Take a second to support IT Security News on Patreon!