IT Security News Daily Summary 2020-12-25

• Quickie: String Analysis & Maldocs, (Fri, Dec 25th)

• DEF CON 28 Safe Mode Blockchain Village – Josh McIntyre’s ‘Chaintuts – Bitcoin Address Generator’

• MacRumors Giveaway: Win a Leather Apple Watch Band From Southern Straps

• North Korea-linked Lazarus APT targets the COVID-19 research

• High Tech Police Surveillance of Protests and Activism: Year in Review 2020

• Data Breach at Sangoma Technologies because of Ransomware Attack

• Get a New Apple Device for Christmas? Check Out Our Apple Product Guides

• The software-defined home: IoT sensors can help build healthier and greener housing

• The Russian cryptocurrency exchange Livecoin hacked on Christmas Eve

• Why cybersecurity tools fail when it comes to ambiguity

• URL Spoofing: Interview With Bug Bounty Hunter Narendra Bhati

• Microsoft Warns CrowdStrike of Hackers Targeting Azure Cloud Customers

• The CSO guide to top security conferences, 2020

• Want your endpoint security product in the ‘Microsoft Consumer Antivirus Providers for Windows’ ?

• Lazarus launches malware attack on Corona Virus vaccine research

• Data Security platform Vera Security acquired by HelpSystems LLC

• Happy Holidays From MediaOps

• Attackers Abusing Citrix NetScaler Devices to Launch Amplified DDoS Attacks

• CISA Releases Free Detection Tool for Azure/M365 Environment

• DDoS amplify attack targets Citrix Application Delivery Controllers (ADC)

• Apple Begins Lowering App Store Commission to 15% for Eligible Developers

• SUNBURST Additional Technical Details

• Looking Back on the Year in Apple Security – Intego Mac Podcast Episode 167

• Russian crypto-exchange Livecoin hacked after it lost control of its servers

• DEF CON 28 Safe Mode Blockchain Village – Martin Abbatemarco’s ‘7 Phases Of Smart Contract Hacking’

• IT Security News Daily Summary 2020-12-24

• The Importance of Cybersecurity in Biological Research

• Millions of devices could be hacked exploiting flaws targeted by tools stolen from FireEye

• Citrix ADC Servers Targeted in DDoS Attacks

• Active Chase Phishing Scam Disguised as Fraud Alerts

• Emotet Updates Prompt New Detection Strategies for Defenders

• Why AI and security pros need to work together to fight cybercrime

• Hacker Earns $2m in Bug Bounties

• DOJ Officials Shut Down Spoofed Domains of Moderna and Regeneron

• Amazon Gift Card Scam Delivers Dridex This Holiday Season

• DEF CON 28 Safe Mode Blockchain Village – Peiyu Wang’s Exploit Insecure Crypto Wallet’

• XKCD ‘Into My Veins’

• COVID-19 and Surveillance Tech: Year in Review 2020

• How COVID Changed Content Moderation: Year in Review 2020

• Merry Christmas Silicon UK Readers

• IRS IG: No taxpayer data exposed by hack

• Citrix devices are being abused as DDoS attack vectors

• White Ops Acquired by Goldman Sachs

• OWASP API Security Top 10: A Framework for Improving Your API Security Efforts

• Happy Holidays from Morphisec

• Lazarus Group Hits COVID-19 Vaccine Maker In Espionage Attack

• ‘Shark Tank’ host Robert Herjavec on the SolarWinds cyber hack

• A Christmas Miracle: How the IoT saved Christmas

• Smart Tachographs: Innovation out of necessity

• Why application-layer encryption is essential for securing confidential data

• Google not to use Fitbit data for advertising purposes

• Trump Vetoes $740bn Defense Bill Over Section 230

• Zoom To Deploy Email Service, Calendar App

• Windows Zero-Day Still Circulating After Faulty Fix

• SolarWinds Hackers “Impacting” State and Local Governments

• VideoBytes: Offensive security tools and the bad guys that use them

• Google reveals unpatched 0day vulnerability in Microsoft’s API

• Quarterbacking Vulnerability Remediation

• Google Asked AI Researchers To Strike Positive Tone – Report

• Google reveals unpatched zero day vulnerability in Microsoft’s API

• Vermont Hospital Says Cyberattack Was Ransomware

• HelpSystems Acquires Data Protection Firm Vera

• Credential Phishing Attack Impersonating USPS Targets Consumers Over the Holidays

• US Treasury officials’ Email Accounts Hacked by the Threat Actors Behind SolarWinds Attack

• Delivering Santa from Third-Party Risk

• HelpSystems Acquires Data Security Firm Vera

• Google reported that Microsoft failed to fix a Windows zero-day flaw

• Twitter To Remove All Followers From Potus Accounts

• S3 Ep12: A chat with social engineering hacker Rachel Tobac [Podcast]

• HelpSystems Acquires Vera to Expand Data Security Offerings

• Nintendo Went Mission-Impossible on Homebrew Hacker in 2013, Alleged Leaked Documents Show

• Cartoon: The Message Is Loud and Clear

• China cyber attacks: the current threat landscape

• Monitoring Microservices on AWS with Thundra: Part II

• How China Uses Stolen US Personnel Data

• Amazon Faces Union Challenge In Alabama

• Why You Should Update Your Software | Avast

• Goldman Sachs leads acquisition of bot mitigation company White Ops

• Government Security Experts Issue Farmers with New Advice

• ‘Ransomware Task Force’: Microsoft, McAfee and Rapid7 Coalition

• Hands-On: Kali Linux on the Raspberry Pi 4

• Misconfigured AWS Bucket Exposes Hundreds of Social Influencers

• ‘Ransomware Task Force’, Microsoft, McAfee and Rapid7 Coalition

• SolarWinds hackers are ‘impacting’ U.S. federal, state, and local governments

• US Teen Accused of Deadly Cyber-Stalking Campaign

• New Lawsuit Takes Aim at Ring After Smart Doorbell Hijacking

• Google Discloses Poorly-Patched, Now Unpatched, Windows 0-Day Bug

• Cyber Attacks are grave risks to National Security, says US President Joe Biden

• Ransomware attack confirmed on Vermont Hospital

• Payment Card Information leaked of Proliance Surgeons

• Malicious Word Document Delivering an Octopus Backdoor, (Thu, Dec 24th)

• Want to add antivirus to your existing portfolio?

• North Korean Hackers Trying to Steal COVID-19 Vaccine Research

• Best of 2020: The SolarWinds Supply Chain Hack: What You Need to Know

• U.S. cybersecurity: Preparing for the challenges of 2021

• 7 ways malware can get into your device

• Network operator spend on multi-access edge computing to reach $8.3B by 2025

• Securing the future of IoT devices

• Three Strikes & You’re in!

• Bitglass Security Spotlight: Popular Messaging App Exposes Users’ Private Data.

• 2021 Cybersecurity in healthcare

• New SUPERNOVA Backdoor Found in SolarWinds Cyberattack Analysis

• Building a Better U.S. Approach to TikTok and Beyond

• Geoverse announces successful 5G data session using its GeoCore intelligent service platform

• Daimler and Infosys partner to drive IT infrastructure transformation

• FaaS: Security Considerations to Know Before Going Serverless

• Minimice las pérdidas corporativas al monitorear el desempeño de sus aplicaciones

• Stack8 to offer RingCentral’s UCaaS platform to its enterprise customers

• 2020-12-23 (Wednesday) – Quick post: Qakbot infection with spambot activity

• FireEye shares jump back to pre-hack levels

Generated on 2020-12-25 23:55:07.754564