IT Security News Daily Summary 2022-08-08

• Senate Dems have joined the push to block a Schedule F revival

• Lawyers may be limiting threat info sharing

• Mobile threats prompt operational changes for government staff

• Top 8 in-demand cybersecurity jobs for 2022 and beyond

• Rise of precision agriculture exposes food system to new threats

• Emergency alert system vulnerable, FEMA warns

• Stegomalware Surge – Attackers Using File, Video, Image & Others To Hide Malware

• Finance sector looks to block cyber reporting rules for critical industry in House defense bill

• Oil and Gas Cybersecurity: Industry Overview Part 1

• Facebook’s Metaverse is Expanding the Attack Surface

• Benefits & Drawbacks of Using a VPN on Linux

• BruteDum- A network attack bruteforce tool

• BrightCloud® Threat Report Mid-Year Update: Reinvention is the Name of the Game

• USDA to test mobile SNAP payments with state partners

• Most Organizations Do DMARC Wrong. Here’s How to Do It Right.

• Twilio discloses data breach that impacted customers and employees

• Five Data Security Controls and Processes you Must Bring to Cloud-native Infrastructures

• Senate appropriators seek alternatives to TMF

• A Phone Carrier That Doesn’t Track Your Browsing or Location

• Congratulations to the MSRC 2022 Most Valuable Researchers!

• Twilio customer data exposed after its staffers got phished

• Slack admits to leaking hashed passwords for five years

• A Phone Carrier That Doesn’t Track Your Browsing or Location

• Microsoft tightens Edge security for less visited websites

• Coding it Forward fellows share their stories

• How older security vulnerabilities continue to pose a threat

• Open Redirect Flaws in American Express and Snapchat Exploited in Phishing Attacks

• Hacking the Future at DEF CON 30

• IT security: An opportunity to raise corporate governance scores

• Hackers Exploiting High-Severity Zimbra Flaw to Steal Email Account Credentials

• How to protect your organization from the top malware strains

• Phishers Swim Around 2FA In Coinbase Account Heists

• U.S. Imposes Sanctions On Virtual Currency Mixer Tornado Cash

• Dark Utilities C2 Service Draws Thousands Of Cyber Criminals

• Slack Leaked Hashed Passwords From Its Servers For Years

• San Diego Citizens Wrest Control Of Surveillance Tech Away From Police

• How Hash-Based Safe Browsing Works in Google Chrome

• IT security: an opportunity to raise corporate governance scores

• Stories from the SOC – Credential compromise and the importance of MFA

• 9 Factors to Consider Before Choosing a UEM Solution

• How crypto scams work – and why enterprises need to take note

• Meta Takes Action Against Cyber Espionage Operations Targeting Facebook in South Asia

• Deepfakes Grow in Sophistication, Cyberattacks Rise Following Ukraine War

• The Wrong Way to Compete With China

• Attack on Supplier Leaves NHS Recovering Services

• FortiGuard Labs: Evolving RapperBot IoT Malware Detected

• Multilingual Cybersecurity Awareness Training adapted for your needs

• Do You Know If Your Web Forms Are Secure?

• Phishers Swim Around 2FA in Coinbase Account Heists

• HYAS Unveils New Tool for Continuous DNS Monitoring

• Meta Disrupted Two Cyberespionage Operations in South Asia

• 7-Eleven Closes Stores in Denmark After Hacker Attack

• Twilio Hacked After Employees Tricked Into Giving Up Login Credentials

• 10 top open source security testing tools

• LogoKit update – The phishing kit leveraging Open Redirect Vulnerabilities

• Private Information of Almost 100k Healthcare Providers Exposed by PlatformQ

• Twitter 5.4 Million Users Data is Up For Sale For $30,000

• Live Public Preview: Check Point supports Eventarc for Google Cloud

• Your cybersecurity staff are burned out – and many have thought about quitting

• Chinese Hackers May Be Behind Attacks Targeting Eastern Europe and Afghanistan

• Cybersecurity Training and Tech Aren’t Enough; ‘Culture Change’ Needed

• What Adjustable Dumbbells Can Teach Us About Risk Management

• HYAS Infosec Announces General Availability of Cybersecurity Solution for Production Environments

• Researchers Uncover Classiscam Scam-as-a-Service Operations in Singapore

• The Benefits of Building a Mature and Diverse Blue Team

• New Orchard Botnet Uses Bitcoin Founder’s Account Info to Generate Malicious Domains

• Greek Intelligence Service Accepts Keeping Surveillance on Journalist

• Accurate U.S. crime data demands more state participation

• Hackers Exploit Open Redirect Vulnerabilities to Conduct LogoKit Phishing Campaigns

• Pipeline Operators Are Headed in the Right Direction, With or Without TSA’s Updated Security Directives

• How You Can Hack Your Senses to Work Better

• North Korean hackers target crypto experts with fake Coinbase job offers

• US, Australian Cybersecurity Agencies Publish List of 2021’s Top Malware

• Cyberspying Aimed at Industrial Enterprises in Russia and Ukraine Linked to China

• What Is Vishing?

• Everything CISOs Need to Know About NIST

• Electronic Signatures for the Healthcare Sector: 5 Things You Need to Know

• A New Remote Access Trojan Dubbed Woody Rat Delivered as Office Documents

• Most Reliable Hosting Company Sites in July 2022

• The metaverse faces more than 8 potential cyberthreats

• #ISC2Congress Theme: EMPOWER

• Hackers Using SHARPEXT Browser Malware to Spy on Gmail and Aol Users

• Is Your SME At Risk Of A Supply Chain Attack? Ask Yourself These Questions…

• A week in security (August 1 – 7)

• Slack leaked hashed passwords from its servers for years

• Greece Flies Russian Money Launderer to US: Lawyer

• NIST’s Post-Quantum Cryptography Standards

• UN Warns Of North Korea Cybercrime Escalation

• UK Parliament Closes TikTok Account After China Data Warning, Experts Weigh In

• What Is DNS? An Introduction to the Internet’s Phonebook and How It Works

• Apple Tells Taiwanese Suppliers To Avoid Disruption

• China’s Didi Chuxing ‘Fears More Sanctions’

• Report URI: Major new features, Threat Intelligence and more!

• Deepfake attacks and cyber extortion are creating mounting risks

• NHS 111 Cyberattack And Experts Reactions

• North Korean Hackers Target Crypto Job Seekers

• Multiple Health and Care Systems Provided by Advanced Hit by Outages

• Microsoft Office to publish symbols starting August 2022

• Deezer ‘Set For German Expansion’ After IPO Slump

• Vietnam’s VinFast Ramps Staff Ahead Of US Electric Vehicle Launch

• Extra, Extra, VERT Reads All About It: Cybersecurity News for the Week of August 1, 2022

• Zero-Day Bug Responsible for Massive Twitter Breach

• Slack Resets Passwords After Hashes Exposed When Invitations Shared

• Businesses are struggling to balance security and end-user experience

• VMware: The threat of lateral movement is growing

• NHS Cyber-Attack Delays Ambulances

• North Korea Allegedly Stole Millions of Dollars Worth of Crypto Assets

• How Data Collection Can Improve Cyber Security

• Tinder Ditches Metaverse, Digital Coin Plans As Investors Swipe Left

• Amazon To Buy Roomba Maker iRobot For $1.7bn

• Dorsey’s Block To Cut Expenditures After Crypto Loss

• Are you overheating? Your phone might be too…

• Targeted attack on industrial enterprises and public institutions

• Software developers, how secure is your software ?

• Meta Cracks Down on Cyber Espionage Operations in South Asia Abusing Facebook

• FIRST launches Traffic Light Protocol 2.0 with important updates

• Dark Utilities C2 service draws thousands of cyber criminals

• New ransomware targeting critical Linux Servers in South Korea

• UK NHS 111 Telephone number meant for medical help down because of Cyber Attack

• Microsoft is blocking Tutanota email addresses from registering a MS Teams account

• Attackers abuse open redirects in Snapchat and Amex in phishing attacks

• Stratus Red Team: Open-source tool for adversary emulation in the cloud

• Could criminalizing ransomware payments put a stop to the current crime wave?

• Your next Phishing email may come straight from PayPal

• What Black Hat USA 2022 attendees are concerned about

• Data privacy regulation a top three challenge for IoT adopters

• Cyberattacks on healthcare organizations negatively impact patient care

• Singapore Increases its Investment in Quantum Computing, to Keep Ahead of Security Risks

• Ivanti Named Leader in 2022 Gartner® Magic Quadrant™ for Unified Endpoint Management Tools

• Weak Cybersecurity is taking a toll on Small Businesses

• IT Security News Weekly Summary – Week 31

• IT Security News Daily Summary 2022-08-07

• Darktrace Nominated to Compete for Double ‘ASTORS’ Awards in 2022

• Twitter Confirms Data Breach as 5.4M Accounts Sold on Hacker Forum

• Serious cyberattack hits German Chambers of Industry and Commerce (DIHK)

• Neuro Practice Says 363,000 Users’ Personal Info Leaked

• The dos and don’ts of startup security: How to develop a security plan

• Were Facebook and Twitter Consistent in Labeling Misleading Posts During the 2020 Election?

• Security Affairs newsletter Round 377

• To Secure Saas, Combine Top Compliance Frameworks with An SSPM

• Great Power Brings Great Responsibility: How to Keep Cloud Databases Secure in an Uncertain World

• GwisinLocker ransomware exclusively targets South Korea

• Slack Fixed Security Flaw for Passwords

• Patch now! Cisco VPN routers are vulnerable to remote control

• Hackers Exploited Twitter Zero-day Bug to Expose 5.4 Million Accounts

• How to Use Lockdown Mode in iOS 16 to Make Your Phone More Secure

• Week in review: Spot deep-faked job candidates, data exfiltration via bookmarks, Patch Tuesday forecast

• Phishy calls and emails play on energy cost increase fears

• Penetration testing

• New IoT RapperBot Malware Targeting Linux Servers via SSH Brute-Forcing Attack

• SSCP Exam – Changes on the Way!

• Credential harvesting: Is it too big of an attack or can you fight back?

• TechRepublic Premium editorial calendar: IT policies, checklists, toolkits, and research for download

Generated on 2022-08-08 23:55:26.363234