IT Security News Daily Summary 2020-02-21

• Top 9 Windows Server Roles and their Alternatives

• EFF Calls For Disclosure of Secret Financing Details Behind $1.1 Billion .ORG Sale, Asks FTC To Scrutinize Deal

• SSL Certificate Validity Will Be Limited to One Year by Apple’s Safari Browser

• Friday Squid Blogging: 13-foot Giant Squid Caught off New Zealand Coast

• Emotet Malware Rears Its Ugly Head Again

• What Really Happened at the Roger Stone Sentencing

• EFF Seeks Disclosure of Secret Financing Details Behind $1.1 Billion .ORG Sale, Asks FTC To Scrutinize Deal

• Lawsuit Claims Google Collects Minors’ Locations, Browsing History

• FBI recommends passphrases over password complexity

• DEF CON 27, Artificial Intelligence Village – Dr Ethan Rudd’s ‘Loss Is More Improving Malware Detectors’

• Active Attacks Target Popular Duplicator WordPress Plugin

• Nevada Democrats are trying to avoid repeating the Iowa caucus debacle — here’s how

• Duped into running bogus virus scans at Office Depot? Dry your eyes with a small check from $35m settlement

• VMware addresses serious flaws in vRealize Operations for Horizon Adapter

• MGM Hotel breach highlights need for sophisticated cloud security

• Trump administration advances policy that could block DOD unions

• Inrupt, Tim Berners-Lee’s Solid, and Me

• 5 best practices for IIoT project success

• Slickwraps Data Breach Exposes Financial and Customer Info

• Zero-Day Bug In ThemeREX WordPress Plugin Exploited In The Wild

• BIMI Up, Scotty! A look at Brand Indicators for Message Identification (BIMI) Adoption with R and the Alexa Top 1m

• Google kicks out 600 malicious apps from Play Store

• The Joy of Tech® ‘Business Plan!’

• Extension Brings Internet Explorer Menu Bar to Microsoft Edge

• 70% of IT leaders say security concerns restrict adoption of public cloud

• 92% of Americans would delete an app that sold their personal information

• Hackers Were Inside Citrix for Five Months

• 33.4 Billion Records Exposed In Breaches Due To Cloud Misconfigurations?

• JEDI delay impacts classified cloud provisioning

• Cryptographic ‘tag of everything’ could protect the supply chain

• Augmented reality headset stands out in Army 2021 budget request

• California Man Arrested for Politically Motivated DDoS

• MacRumors Giveaway: Win an Arlo Pro 2 Security Camera Setup

• Esper: ‘No pressure’ from White House over JEDI

• Exaggerated Lion Using G-Suite in Business Email Compromise Campaigns

• The EU Wants All Phones to Work With Interoperable Chargers, Here’s What That Means for Apple’s Lightning Port

• ISS World Suffers Ransomware Attack

• Threat Roundup for February 14 to February 21

• Verizon bails on RSA: How the coronavirus is disrupting tech conferences worldwide

• New Mexico Sues Google Over Collection of Children’s Data

• SlickWraps Allegedly Hacked, Financial and Customer Info Exposed

• Ring Doorbell Forces Two-Factor Authentication

• Gopher: When Adversarial Interoperability Burrowed Under the Gatekeepers’ Fortresses

• US Bill To Clamp Down On End-To-End Encryption

• Will SDF-Affiliated Courts Try European Foreign Fighters?

• Far-Right Terror Rocks Germany

• The Amazon Prime phishing attack that wasn’t…

• RSAC 2020: Editors’ Preview of Hottest Sessions, Speakers and Themes

• DISA Breach Could Impact 200,000, Says Trump’s IT Agency

• The RSA survival guide

• Google Releases Security Updates for Chrome

• Burning Man Tickets for $225? Yep, Too Good to Be True

• Google to put a muzzle on Android apps accessing location data in the background

• Microsoft Brings Defender Antivirus for Linux, Coming Soon for Android and iOS

• Olympics Could Face Disruption from Regional Powers

• The local police are telling people what I’m doing? I don’t think I like it

• How Trump Hollowed Out US National Security

• Judas DNS – Nameserver DNS Poisoning Attack Tool

• Air Force wants $150 million for Space Force software pilot in 2021

• NRC Health Ransomware Attack Prompts Patient Data Concerns

• Google Removes 600 Android Apps for Displaying Disruptive Ads

• Fiddling with Windows: Proxy tools for Win10

• How a security researcher responds to an email phishing attempt

• 11 things you might not know about security operations center burnout

• Becoming a Data Company: Back to the Future

• Private details of 10.7 million MGM Hotel guests sold on Dark Web

• Malware Attack Takes ISS World’s Systems Offline

• Make Your AirPods Case Look Like a Game Boy With This New Cover

• Booz Allen Awarded $113m SEC Contract

• NetApp IT Podcast: Microservice-Based Architecture, Containers, and Orchestration in IT

• Why feds shouldn’t fear GitHub

• Expansion For HAPS Alliance For High Altitude Connectivity

• PhotoSquared App Leaked Personal Data And Sensitive Photos Online

• US Cyber-flashers Could Get $1K Fine

• BrandPost: Addressing the Security Demands of Today’s Dynamic Cloud Environments

• The Human Element at RSA Conference

• Google Denies Harvesting Student Data With Free Chromebooks

• Stone Gets 40 Months And A Rebuke From Judge For Lying To Congress

• Google trending Cyber Attack news headlines

• New Jersey Hospital Network Faces Lawsuit Over Ransomware Attack

• MGM Hotel Hack Leaves 10.6M Guests’ Personal Data Exposed

• U.S. Lawmakers To Introduce Bill That Threatens Encryption On Tech Platforms

• Apple Maps Expands 3D Street View Feature to Boston, Philadelphia, and Washington, D.C.

• Vendors Ditching RSA Over Coronavirus Fears

• Compliance: Veritas tool adds intelligence and analysis to data supervision

• This Week in Security News: LokiBot Impersonates Popular Game Launcher and DRBControl Espionage Operation Hits Gambling, Betting Companies

• SECURITY ALERT: Emotet Infected A Large Danish Company

• S2 Ep27: Bluetooth holes, dodgy Chrome extensions and forgotten passwords – Naked Security Podcast

• How to Get CISOs & Boards on the Same Page

• How to Use a Firewall for Network Traffic Analysis and Behavioral Detection

• Emotet Infected A Large Danish Company

• US DoD Department Hacked And Data Compromised

• Expert Analsysis Of US Defense Agency Says Personal Data ‘Compromised’ In 2019 Data Breach

• CISSP Architecture Concentration Exam Updates

• Municipal Cyberattacks Put Us All at Risk: What Can We Learn From Previous Attacks?

• WLAN: Emotet’s new distribution method

• FireEye Spotted Over 500 New Malware Families in 2019

• Expert Analysis On ISS World Suffers From Cyber Attack

• Google denies claims that free school Chromebooks are illegally collecting student data

• Thinking Strategically About Passwordless

• ISS World Hit with Malware Attack that Shuts Down Global Computer Network

• Google Testing New Double-Tap Gesture on Back of Pixel Phones for Launching Camera, Assistant, and More

• ObliqueRAT linked to threat group launching attacks against government targets

• Best Practices for Storage Reclamation – Part 3 of 3

• Iranian Hackers Plant Backdoors Through VPNs | Avast

• Exclusive: Pakistan and India to armaments: Operation Transparent Tribe is back 4 years later

• FBI Alerts Companies of Cyber Attacks Aimed at Supply Chains

• Larry Tesler, of copy-and-paste fame, dies at 74

• VMware Patches Serious Flaws in vRealize Operations for Horizon Adapter

• Week in security with Tony Anscombe

• Prosecutions of International Terrorist Supporters Continue: Winter 2019 Update

• Expert Comments On Over 30 Data Breach Incidents in Health Care Reported So Far In 2020, Affecting Over 1 Million Individuals

• Android Malware: Joker Still Fools Google’s Defense, New Clicker Found

• Google Cleans Play Store of Nearly 600 Apps for Ad Policy Violation

• Security Now Merges With Dark Reading

• US and UK call out Russian hackers for Georgia attacks

• U.S. Combat Support Agency Discloses 2019 Data Breach

• Cyberthreat Intelligence Tooling — How to Quickly Locate Your Key Indicators

• Surfshark VPN – Authentic Review

• Democratic Presidential Campaigns Learn Cybersecurity Lesson

• Making Cloud Security a Team Sport

• U.S. Department of Defense Disclosed Data Breach at DISA

• Apple Unilaterally Slashes TLS Certificate Trust Period

• Data of 10.6m MGM hotel guests posted for sale on Dark Web forum

• Fraudulent Login Attacks Against Banks Surge: Akamai

• Policy vs Technology

• Magecart Credit Card Skimmer Found On Nine Sites – Expert Advise

• Google Removes 600 Apps from Play Store for Serving Disruptive Ads

• MGM Data Exposure – Expert Commentary From Jumio

• 20,000 WordPress Websites Infected via Trojanized Themes

• 11 penetration testing tools the pros use

• 5G security is a mess. Could digital certificates help?

• Windows & Linux Devices at Risk From Unsigned Peripheral Firmware

• ISS World hit by ransomware attack

• GDPR Protection Will Continue After Google’s US Data Move, Says Lawyer

• White House communications data hack

• Cisco drops security fixes for Smart Software Manager, security appliances

• IE vulnerability patched by Microsoft

• Cisco bug opens software to attack

• Crypto scam on hacked Youtube channel

• Microsoft: Linux Defender antivirus now in public preview, iOS and Android are next

• Haken Malware Family Infests Google Play Store

• Is the Google Play Store Safe? Not Yet.

• Up close and personal with Linux malware

• Imperva Launches the Cyber Threat Index

• DOD DISA US agency discloses a security breach

• UK’s Nominet Makes Its First Ever Acquisition, Moves to Reinforce Registry Operations

• Adobe fixes critical flaws in Media Encoder and After Effects

• Washington state Senate passes bill to rein in facial recognition

• UK Names and Shames Russia for Georgia Cyber-Attacks

• Google Bans 600 Android Apps That Bombarded Users with Ads

• Millions of Windows & Linux Systems are Vulnerable to Remote Hack that Manufactured by Lenovo, Dell, HP and Others

• ‘Don’t tell anyone but I have a secret.’ There, that’s my security sorted

• New VPN Research Reveals Holes in Free Applications

• MGM Customer Data Has Been on Dark Web for Six Months

• Huawei executive: ‘It would be a challenge’ for US to create 5G rival

• Google Bans 600 Android Apps from Play Store for Serving Disruptive Ads

• Quick Analysis of an Encrypted Compound Document Format, (Fri, Feb 21st)

• Chernobyl and its Cyber Lessons, Part 2: Incident Response

• Looking at the future of identity access management (IAM)

• Survey: Trump Not as Smart as the IT Director

• Dragos Report: Analysis of ICS flaws disclosed in 2019

• Home Affairs pushes back against encryption law proposals

• Cloud-enabled threats are on the rise, sensitive data is moving between cloud apps

• Ransomware attack on ISS World

• 10 hot industry newcomers to watch at RSA Conference 2020

• DNA data become a soft target for hackers who are stealing it via Cyber Attacks

• Chinese Hackers, Coronavirus Phishing Attacks, How to Stay (Almost) Anonymous Online

• High-risk vulnerabilities and public cloud-based attacks on the rise

• Georgia Blames Russia for Cyberattack, US, UK Agree

• Worldwide ICT spending forecast to reach $4.3 trillion in 2020

• Idaptive adds endpoint security and passwordless capabilities to its Next-Gen Access platform

• LokiBot Mimics as Game Launcher To Trick the Users into Executing Malware

• Is the cybersecurity skills gap real?

• Huawei says US push to create a 5G rival ‘would be a challenge’

• ISC Stormcast For Friday, February 21st 2020 https://isc.sans.edu/podcastdetail.html?id=6878, (Fri, Feb 21st)

• White Ops Application Integrity: Protecting enterprises from sophisticated bot attacks

• Insecure Direct Object Reference (IDOR) — Web-based Application Security, Part 6

• 4 Reasons to Automate Security Testing with AppSec Instrumentation

• How to Use NIST’s Cybersecurity Framework to Foster a Culture of Cybersecurity

• Unisys offers $10,000 to those who compromise a target system protected by Stealth

• Trustwave releases consulting and managed security services for Palo Alto Networks Prisma Cloud

• Threat Analysis: Active C2 Discovery Using Protocol Emulation Part2 (Winnti 4.0)

• How AI helps predict fire risk

• DNA databases are boon to police but menace to privacy, critics say

• HPE announces Veeam support for HPE Primera storage and enhancements to HPE StoreOnce backup

• Cyware’s 2.0 suite of cyber fusion products enables orgs to detect, analyze, and act on security threats

• ElectionShield protects political campaigns from online threats

• The CARTA Approach is The New Black in Stopping Online Crime

• Infoblox Core DDI and Cloud Platform appliance products are now certified as Nutanix Ready

• ClearDATA Comply SaaS now includes Microsoft’s Azure Cloud Services

• Detection Coverage and Detection-in-Depth

• Google exiles 600 apps from Play Store for ‘disruptive advertising’ amid push to clean up Android souk’s image

• QuintessenceLabs secures investment and expands quantum-safe portfolio

• CyberX integrates with Microsoft Azure Security Center

• DOD DISA discloses data breach

• SentinelOne raises $200 million to accommodate customer demand and accelerate growth

• New Mexico Sues Google for Mining Children’s Data

• Gil Vega joins Veeam Software as CISO

• Zero Networks Access Orchestrator: Autonomous, airtight network access security at scale

• AT&T bails on RSA: How the coronavirus is disrupting tech conferences worldwide

• Apple drops a bomb on long-life HTTPS certificates: Safari to snub new security certs valid for more than 13 months

• T-Mobile and Sprint Aiming to Close Merger as Early as April 1

• Webinar: BlackBerry Cylance 2020 Threat Report Highlights

• Stuffing nonsense: Persistent cyberpunks are pummelling banks’ public APIs, warns Akamai

• Senate panel passes VA tech oversight bill

• Croatia’s largest petrol station chain INA group hit by ransomware attack

• IT Security News Daily Summary 2020-02-20

• Google Bans 600 Android Apps for Obnoxious Ads

• Attorney General: Facebook Could Potentially Be Held Liable For User Posts

• New Azure Firewall certification and features in Q1 CY2020

• TSA shines a light on insider threats

• New Ponemon Survey — Why Most People Think Their PKI Cannot Scale

• Azure Firewall Manager now supports virtual networks

• Popular Mobile Document-Management Apps Put Data at Risk

• What are the most important pillars of a zero-trust framework?

• Evasion Techniques: Geoblocking by IP

• Google removes 600 Android apps in Play Store adware crackdown

• State-industry cooperation is key to protecting democracy

• Voatz, MIT researchers spar over blockchain e-voting app

• Upcoming 13-Inch MacBook Pro Models to Use Intel’s 10th-Generation Ice Lake Chips

• TIC 3.0 and zero-trust networking

• Mobile Carriers’ Free-Speech Rights Compromised By New Privacy Law? Read It And Weep

• Mercury 7 [Friendship 7 with John Glenn Aboard] Launch Anniversary

• Microsoft Announces General Availability of Threat Protection, Insider Risk Management

• Microsoft Unveils Their New Windows 10 System Icons

• RSA Conference loses one more abbreviated tech giant after AT&T disconnects over Wuhan coronavirus fears

• Internet of Things Candle

• ISS World “malware attack” leaves employees offline

• Ransomware Damage Hit $11.5B in 2019

• TIC 3.0 and zero trust networking

• UK, US and its allies blame Russia’s GRU for 2019 cyber-attacks on Georgia

• Veritas Extends Reach of AI Compliance Tool

• Cisco Patches Critical Flaw in Smart Licensing Solution

• Over 400 ICS Vulnerabilities Disclosed in 2019: Report

• AT&T bows out of RSA Conference 2020

• DEF CON 27, Artificial Intelligence Village – Hyrum Anderson’s ‘Competitions In Infosec Machine Learning’

• WhatsApp Phishing URLs Skyrocket With Over 13,000% Surge

• FTC Refunds Victims of Office Depot Tech Support Scam

• XKCD ‘Picking Bad Stocks’

• Researchers recovered 9 billion email & password combos in 2019

• It’s Time to Break the ‘Rule of Steve’

• WP-VCD Botnet Now Injecting Anti-Adblocker Scripts

• Adobe Patches Two Critical Arbitrary Code Execution Vulnerabilities:

• Russia’s GRU Blamed For Huge Cyberattack On Georgia

• Foxconn ‘Cautiously Resuming’ Chinese Factory Production

• Password Spraying Attack Allowed Hackers to Get Inside Citrix Systems’ Network

• 5G: Huawei unveils new infrastructure products aimed at Europe

• Apple Seeds Second Public Betas of iOS and iPadOS 13.4 With New Mail Toolbar, iCloud Folder Sharing and More

• Threat spotlight: RobbinHood ransomware takes the driver’s seat

• Phishing Threat Actor Blocking Techniques: Geoblocking by IP

• SIEM Still Creates Complexity and Administration Challenges

• Advanced Encryption Standard (AES)

• We know what you did last summer: MGM’s hotel spinoff lost 10.7m guest records and now they’re on hacker forums

• State & Local Governments: The Cyberinsurgency Spreads

• SecZetta and One Identity Partnership Strengthens Non-Employee Identity Governance Processes

• Cloud Access Security Brokers Give Peek into Better Application Security

• SoPo Nonprofit Told, Unknown Number of Clients Affected by Data Breach

• New Microsoft Security innovations and partnerships

• Whodat? Enumerating Who “owns” a Workstation for IR, (Thu, Feb 20th)

• Betting and Gambling Websites under Cyberattack from Chinese Hackers

• Alert! The Days of WhatsApp Are Gone? Stronger Competitor In The Market!

• RSAC 2020: Three Reasons Why the “Human Element” is a Timeless Theme

• Personal Info of 10.6M MGM Resort Guests Leaked Online

• HP Joins Industry-Standards Initiative for Printer Security

• RegRipper Update

• Critical Cisco Bug Opens Software Licencing Manager to Remote Attack

• Coronavirus kills MWC, IBM withdraws from RSA: What about Kaspersky’s Security Analyst Summit?

• Croatia’s largest petrol station chain impacted by cyber-attack

• How to use Restricted Shell to limit user access to a Linux system

• 5 free security apps to keep your Mac safe

• Zero Networks Launches Industry’s First Autonomous Network Access Orchestrator, Announces $4.65 Million in Funding

• Security platform tracks rogue wireless devices via real-time map

• Federal employee unions still quiet on endorsements

• Microsoft Threat Protection Now Generally Available

• Take Greenland Seriously and Literally as a Vital National Security Issue

• ObliqueRAT: New RAT hits victims’ endpoints via malicious documents

• Cybergang Favors G Suite and Physical Checks For BEC Attacks

• Dispatch from Munich: Seeking a Savior in a Time of Westlessness

• Award Winning RiskLens Unveils the RiskLens FAIR Enterprise Model™

• MGM Resorts data breach exposes details of 10.6 million guests

• Adobe released out-of-band updates for After Effects and Media Encoder apps

• Cisco Releases Security Updates

• ProcessUnity Vendor Risk Management expanded to include new best practices configuration

• Google Tells Microsoft Edge Users To Get Chrome for Better Security

• Google Adsense users facing extortion Cyber Threats with fake web traffic

• What Is Taint Analysis and Why Should I Care?

• How Shadow IT could put your organization at risk

• Disruptive ads enforcement and our new approach

• Microsoft Defender ATP for Linux Now In Public Preview

• DigiTimes Continues to Suggest New Version of AirPods Pro Are Forthcoming

• Apply Now For The Hottest Cybersecurity Startup Accelerator Programme

• How some presidential campaigns use DMARC to protect their domains from being spoofed

• Types of user accounts in Windows 10 (local, domain, Microsoft)

• Hackers Get Free MGM Resorts Guest Database with 10M+ Records

• Uncover the Value of your Data for Improving Patient and Business Outcomes at HIMSS 2020

• US, UK Blame Russia For Mass Defacement Of Georgian Websites

• MGM Hack Exposes Personal Data Of 10.6 Million Guests

• AV-TEST Places Cisco Umbrella First in Security Efficacy

• 7 of the World’s Top 10 Open Source Packages Come with This Warning

• ISS World Hack Leaves Thousands Of Employees Offline

• Adobe Releases Patch For Critical Code Execution Vulnerability

• US, UK Blame Russia for 2019 Cyber Attacks in Georgia

• US, UK formally blame Russia for mass-defacement of Georgian websites

• GRU won’t believe it: UK and US call out Russia for cyber-attacks on Georgia last year

• ‘OurMine’ group hijacks Twitter accounts for Olympics and FC Barcelona

• VirusTotal MultiSandbox += QiAnXin RedDrip

• UK Police force denies creating ‘child hacker’ poster

• Ring Makes Two-Factor Authentication Mandatory For All Customers

• Vast number of vulnerabilities found in source code

• Swiss Cybersecurity Body Urges Businesses to Stop Paying Ransomware Demands, Exposes Lax Security Practices

• How to use Windows Recovery Environment

• North Korean malware could still pose major threat

• Almost 6,000 unpatched Citrix NetScaler servers remain vulnerable to critical security flaw

• Bad Guys are sneaking malware into Brit Awards nominee Billie Eilish’s music

• Hacking McDonald’s for Free Food

• Cyber security skills gap could get worse, according to 62% of CISOs

• 5 Strategies to Secure Cloud Operations Against Today’s Cyber Threats

• Israeli soldiers tricked into installing malware by Hamas

• Bug in WordPress plugin can let hackers wipe up to 200,000 sites

• Ransomware attack forces 2-day shutdown of natural gas pipeline

• Iranian hackers breach VPN servers to plant backdoors in corporate networks worldwide

• Fidelis Adds Risk Simulation and MITRE ATT&CK Mapping to Elevate Platform

• How Clever and Secure is Your Home?

• What’s it Like Being a Woman in Cybersecurity?

• Phishing techniques: Asking for sensitive information via email

• 10 Tough Questions CEOs Are Asking CISOs

• Samsung Sent Mysterious Alert To Users Overnight

• MGM Resorts Admits Data Breach Of 10.6 Million Guests

• Web Browser-Based Attacks: How to Protect Users

• Hack the Box (HTB) machines walkthrough series — Heist

• UK Google Accounts To Be Placed Under US Jurisdiction

• Keen to check for ‘abnormal’ user behaviours? Microsoft talks insider risk, AWS imports and compliance at infosec shindig RSA

• Microsoft Insider Risk Management and Communication Compliance in Microsoft 365 now generally available

• Firms Improve Threat Detection but Face Increasingly Disruptive Attacks

• Cometdocs Threatens Legal Action Over Disclosure of Security Issues

• Developers Hack McDonald’s Reward System to Get Free Hamburgers

• Free import of AWS CloudTrail logs through June 2020 and other exciting Azure Sentinel updates

• Cisco fixes a static default credential issue in Smart Software Manager tool

• Plaintext Podcast Episode 1: Former CISO Thom Langford, CEO of (TL)2 Security

• Expert Reaction On Chinese Hackers Have Breached Online Betting And Gambling Sites

• Cloud misconfigurations cost companies nearly $5 trillion

• How Duo’s Device Trust Enables Organizations to Enforce Endpoint Compliance

• What the Explosive Growth in ICS-Infrastructure Targeting Means for Security Leaders

• All Things Mobile Security @RSA 2020

• Microsoft Threat Protection and Insider Risk Management hit general availability

• Azure Sentinel uncovers the real threats hidden in billions of low fidelity signals

• Popular YouTube gaming channel hacked to run crypto scam

• Nearly half of hospital Windows systems still vulnerable to RDP bugs

• Is the internet becoming less open?

• SentinelOne and SafeBreach Partner to Drive Continuous Validation of Endpoint Security

• Microsoft Threat Protection stops attack sprawl and auto-heals enterprise assets with built in intelligence and automation

• UNDER ATT&CK: How MITRE’s methodology to find threats and embed counter-measures might work in your organization

• Cybersecurity: Hacking victims are uncovering cyberattacks faster – and GDPR is the reason why

• Critical Adobe Flaws Fixed in Out-of-Band Update

• ZeroFOX Raises $74 Million to Expand Social Media Threat Protection Business

• FCW Insider: Feb. 20

• Spotify May Be Allowed to Stream Directly on HomePod and Set as Default Music App in iOS 14

• The US Blames Russia’s GRU for Sweeping Cyberattacks in Georgia

• Coming to a Conference Room Near You: Deepfakes

• Quick Hits

• Scam Alert: You’ve Been Selected for ‘Like of the Year 2020’ Cash Prizes

• Tesla Pays $10K for Microsoft SQL Server Reporting Services Bug

• ZeroFox raises $74 million to detect and remediate cyberthreats

• Expert Opinion: Amazon Ring Two-factor Authentication

• New Actors Attack Industrial Control Systems, Old Ones Mature

• To Rank or Not to Rank Should Never Be a Question

• US Gas Company Attacked with Ransomware

• M-Trends 2020: Insights From the Front Lines

• CrowdStrike Co-Founder and CTO Steps Down to Launch Nonprofit Policy Accelerator

• Fat Fingers, Insider Threats Continue to Far Outweigh Cybersecurity Incidents

• MGM Resorts hacked: 10.6 million guests have their personal data exposed on hacking forum

• Cisco critical bug: Static password in Smart Software Manager – patch now, says Cisco

• Bloomberg: Apple May Let iOS Users Set Third-Party Web Browser and Mail Apps as Defaults Over Stock Apps

• ATM Penetration Testing – Advanced Testing Methods to Find The Vulnerabilities

• Bluetooth-Related Flaws Threaten Dozens of Medical Devices

• Scammers Use Fake Website to Masquerade as Burning Man Organizers

• Samsung weirdness: Galaxy users freak out over global ‘1’ message from Find My Mobile

• Vulnerabilities in the Core: Key Lessons from a Major Open Source Census

• MGM Grand Breach Leaked Details of 10.6 Million Guests Last Summer

• Ring Rolls Out Mandatory 2FA, New Privacy Controls

• Emotet text message malware spreads

• Login details exposed in password reuse attacks

• Recent ransomware attacks define the malware’s new age

• The CCPA is an opportunity to get your data security house in order

• Deal: Cloud And Networking Certification Training ~ Get 97% OFF

• Chinese Hackers Target Asian Betting Firms

• Attacking the Organism: Financial Services

• Do You Have Gaps in Your Cybersecurity Tech Stack?

• Firefox 73.0.1 fixes crashes, blank web pages and DRM niggles

• February 2020 Web Server Survey

• Experts Insight On Ransomware Attack Forces U.S. Gas Pipeline To Shut Down

• MGM hotel guests face data leak

• Linux and malware: Should you worry?

• 2020 SANS CTI Survey Says Intelligence Is Critical to Security

• Adobe releases out-of-band patch for critical code execution vulnerabilities

• Expert On Amazon Ring Makes 2FA Mandatory

• Cybersecurity Research During the Coronavirus Outbreak and After

• RSA 2020 – what are they talking about?

• Expert Advise On New Digital Blackmail…Pay Up, Or We’ll Make Google Ban Your Ads

• Personal Details Of 10.6M MGM Hotel Guests Posted On A Hacking Forum – Cybersecurity Experts React

• Private data vulnerable as 2,000 UK Government devices stolen

• HHS report 30+ data breaches affecting one million people in 2020

• Ring makes 2FA mandatory to keep hackers out of your doorbell account

• Samsung will be Putin dreaded Kremlin-approved shovelware on its phones, claims Russia

• Over 2000 UK Government Devices Go Missing in a Year

• Four metres underground: illegal cigarette factory uncovered in a bunker in Spain

• Adobe Patches Critical Bugs Affecting Media Encoder and After Effects

• Ransomware Wreaks Havoc Across Europe

• Credit Card Skimmer Found on Nine Sites, Researchers Ignored

• Video: Andrew McKim on Ensuring Security for Tomorrow’s Mobile Endpoints

• RSAC 2020: The roaring 20s. A new decade brings new cybersecurity opportunities and challenges

• What is flowing through your enterprise network?

• Russian banks and energy companies have undergone a new wave of cyberattacks

• Personal details of 10.6M MGM Resorts guests leaked online

• TikTok Explained to a Millennial

• Vulnerability In WordPress Plugin ThemeGrill Demo Importer Allowed Wiping of a Victim Website

• Lesser-Known Social Engineering Tricks

• Are CISOs ready for zero trust architectures?

• Survey Confirms CISOs Stressed Out

• Most credential abuse attacks against the financial sector targeted APIs

• Hackers are actively exploiting a Zero-Day in WordPress ThemeREX Plugin to create Admin Accounts

• Cloud misconfigurations surge, organizations need continuous controls

• Number of records exposed in healthcare breaches doubled from 2018 to 2019

• Ransomware data recovery on Amazon Cloud

• Trump ‘Offered Pardon’ to Assange If He Denied Russia Leak, Court Hears

• What is a Gen 6 Cyber Attack

• Factbook: Healthcare IT practices and cyber preparedness

• Data privacy: What consumers want businesses to know

• Why Is Cyber Resilience Essential and Who’s Responsible for It?

• Top Email Security Threats of 2020 – How To Stop Them

• HP committed to drive more stringent industry standards for printer security

• InfoSec needs a reputation overhaul

• Linux Foundation Releases List of Most commonly used open-source Software & Security Problems

• BluBracket unveils security solution that makes code safe

• EU Proposes Rules for Artificial Intelligence to Limit Risks

• Western Digital iNAND MC EU521: Enhancing the 5G smartphone user experience

• Fortinet launches FortiGate 1800F to accelerate security performance in the data center

• ISC Stormcast For Thursday, February 20th 2020 https://isc.sans.edu/podcastdetail.html?id=6876, (Thu, Feb 20th)

• Watchdog ponders tougher independent oversight for Australia’s encryption laws

• nShield Issuance HSM: Higher security for Entrust Datacard’s card issuance solutions

• Zyxel launches family of WiFi 6 solutions for service providers based upon IEEE 802.11ax standard

• Vulnerable Out of Band Consoles Put Industrial Assets at Risk

• Hackers Target Online Gambling Sites

• Exclusive: Details of 10.6 million MGM hotel guests posted on a hacking forum

• JetPatch 4.0: Adding intelligent workflow automation and Predictive Patching

• Snowflake combines its cloud-native data platform with Google Cloud’s AI, ML and analytics capabilities

• Unsigned Firmware Puts Windows, Linux Peripherals at Risk

• SolarWinds AppOptics makes application troubleshooting simpler, faster, and more accurate

• Trump names Ambassador Richard Grenell acting director of national intelligence

• Trustonic to contribute to the development of secure connected car technologies

• BrandPost: Understanding the Impact of the Cybersecurity Skills Shortage on Business

• Cisco, Fortinet, Palo Alto Networks and SonicWall get NetSecOPEN certified performance results

• Summit 7 prepares Defense and Aerospace Contractors for compliance with the new CMMC regulations

• MGM Resorts – 3,081,321 breached accounts

• EFF to Ninth Circuit: Border Searches of Electronic Devices Require a Warrant

• Navy 2021 budget shows IT, cyber adjustments

• CoSoSys secures strategic investment to accelerate product development and market expansion

• Exclusive: Details of 10.6 million of MGM hotel guests posted on a hacking forum

• Trend Micro delivers strongest quarter in the company’s history

• BrandPost: Securing your Cloud Workloads in Runtime: Why Pre-Runtime Scans Aren’t Enough

• Arctic Wolf appoints Dan Larson as Senior Vice-President of Marketing

• ThreatConnect hires four new senior management team members

• Researchers Fool Smart Car Camera with a 2-Inch Piece of Electrical Tape

• Oi, Cisco! Who left the ‘high privilege’ login for Smart Software Manager just sitting out in the open?

Generated on 2020-02-21 23:55:10.515944