IT Security News Daily Summary 2020-12-29

• Lawsuit Claims Flawed Facial Recognition Led to Man’s Wrongful Arrest

• Court Sides With Facebook, Finds That It Did Not Violate User Privacy By Collecting Location Data

• Deepfakes are Literally Security Theater

• SolarWinds hackers aimed at access to victims’ cloud assets

• Congress: Don’t Grant Austin a Waiver, but If You Do, Reform the Process

• Trump’s Circumvention of the Justice Department Clemency Process

• Op-ed: What nobody else will say about the new cybersecurity crisis

• 2020-12-29 (Tuesday) – Quick post: Emotet infection with Trickbot and spambot traffic

• How to identify bloatware, then uninstall it

• How to Build a Better Cyber Intelligence Team

• Apple Loses Copyright Suit Against Security Startup

• Top Five Apple Products of 2020

• Editor’s picks: Top cybersecurity articles of 2020

• Reducing the Risk of Third-Party SaaS Apps to Your Organization

• Spanning Blog: The Best of 2020

• DEF CON 28 Safe Mode Demo Labs – Ajin Abraham’s ‘Mobile App Security Testing With MobSF’

• XKCD ‘First Thing’

• DEF CON 28 Safe Mode Saturday – Peleg Hadar’s And Tomer Bar’s ‘After Stuxnet Printing Still The Stairway To Heaven’

• Apple Loses Copyright Claims in Lawsuit Against Corellium

• Detect SolarWinds Orion breach

• Whirlpool Hit with Nefilm Ransomware Attack

• Facebook Scam Ads Led to Phishing, Stealing Over 600,000 Passwords

• New Magecart Attack Affects Multiple Ecommerce Sites

• Multiple Smart Doorbells Found Vulnerable To Cyber Attacks

• CISA’s Sparrow.ps1 tool detects malicious activity on Azure, Microsoft 365

• 2020 Had Its Share Of Memorable Hacks And Breaches

• The History of Adobe Flash Player: From Multimedia to Malware

• Usenet indexer NZBGeek hacked; database stolen

• Apple Researching Keyboards With Adaptive Displays on Each Key

• AirPods Pro 2 Could Come in Two Sizes

• Section 215 Expired: Year in Review 2020

• Student Privacy and the Fight to Keep Spying Out of Schools: Year in Review 2020

• How to Uninstall WebDiscover Browser

• What is Spoofing and How to Prevent a Spoofing Attack

• Vodafone Ends Shareholder Tussle Over 2013 Kabel Acquisition

• 6 Questions Attackers Ask Before Choosing an Asset to Exploit

• Bike Maker Kawasaki Confirms Security Breach, Says Hackers Used Advanced Tech to Erase Their Tracks

• Lifting the Fog of War Around Cyber Coverage

• Japanese Kawasaki Heavy Industries discloses security breach

• An Abridged History of America’s Terrorism Prevention Programs: Fits and Starts

• SearchDimension search hijackers: An overview of developments

• CafePress to pay $2 million settlement for 2019 Data Breach

• Looking beyond the year from Dell…to a bright future in 2021 with NetApp

• US To Permit Drone Operations Over Homes, Plus Night Flights

• Japanese Aerospace Firm Kawasaki Warns of Data Breach

• India: A Growing Cybersecurity Threat

• Akamai Prolexic and Equinix Cloud Exchange Unite, Bringing DDoS Defense Closer to the Customer Origin

• Want to know what’s in a folder you don’t have a permission to access? Try asking your AV solution…, (Tue, Dec 29th)

• 9 of Top 10 U.S. Smartphone Activations on Christmas Day 2020 Were iPhones

• AAPL Opened at All-Time High, Shares Have Risen Nearly 150% Since Late March

• Self-Healing Mobile Phone Screens Invented By Scientists

• Early Bird Catches the Worm: New Golang Worm Drops XMRig Miner on Servers

• Attivo Offers Limited-Time Software Use to Combat Privilege Escalation & Lateral Movement

• How companies can use automation to secure cloud data

• Kawasaki Says Data Possibly Stolen in Security Breach

• How to safely add custom code to WordPress websites

• Deals: Get the 64GB iPad Air for $559 on Amazon ($40 Off, Lowest Price)

• Trends in IT-Security and IAM in 2021, the “New Normal” and beyond

• Top Webinars of 2020

• Samsung Display Extends LCD Production In South Korea

• 2020 Work-for-Home Shift: What We Learned

• Top 2020 data backup tips target remote protection, cloud

• Security Pros Reflect on 2020

• Mac Attackers Remain Focused Mainly on Adware, Fooling Users

• Ransomware Is Headed Down a Dire Path

• Hotels, Hookups, Video Conferencing: Top 10 Data Breaches of 2020

• The 10 Most Popular Blogs of 2020

• Security Book Review | Avast

• Apple Reportedly in Talks With Mariah Carey to Make ‘Magical Christmas Special’ Follow-Up

• White House Appeals Judge’s TikTok Ruling

• A Google Docs Bug Could Have Allowed Hackers See Your Private Documents

• CISA releases a PowerShell-based tool to detect malicious activity in Azure, Microsoft 365

• Trump Administration Appeals Latest Court Order Blocking TikTok Ban

• How to choose a CRM software for a real estate company?

• What is malvertising? And how to protect against it

• Hacking Christmas Gifts: Remote Control Cars

• CISA Releases Free Azure, Microsoft 365 Malicious Activity Detection Tool

• FAA approves small drones in the U.S. to fly over people and at night

• A Review of Ransomware in 2020

• Developing Like A Pentester – (And How To Reproduce Any Vulnerability)

• Digital Footprint Intelligence Report

• AutoHotkey-Based Password Stealer Targeting US, Canadian Banking Users

• Application security testing is not just buzzwords

• SharePoint Online: Everything You Should Know

• Best of 2020: ‘TikTok is Spyware,’ Warns Reddit CEO. ‘We Don’t Care,’ Say Users

• FTC Warns of text-messaging scam claiming to be from UPS, FedEx

• Transitioning from vulnerability management to vulnerability remediation

• Cyber Attack on Email Accounts of Finland Politicians

• Top Ransomware attacks of 2020

• Data security vs data privacy – they’re not the same thing

• Freedom Finance’s customer data got leaked after employee fell for phishing attack

• Organizations further along the digital transformation maturity spectrum have an advantage

• The need for zero trust security a certainty for an uncertain 2021

• CyberArk Announces Free Breach Assessment for SolarWinds Customers

• White Ops Announces Acquisition by Goldman Sachs Merchant Banking, ClearSky Security, and NightDragon

• SentinelOne Recognized for Outstanding Workplace and Leadership

• TrueFort Named One of the Top 25 Cybersecurity Companies of 2020

• 2020-12-28 (Monday) – Quick post: Emotet activity resumes after Christmas break

• ISC Stormcast For Tuesday, December 29th 2020 https://isc.sans.edu/podcastdetail.html?id=7308, (Tue, Dec 29th)

• Brazilians mostly unaware of data protection regulations

• House votes to override Trump’s NDAA veto

• Dedicated Server Security Tips You Must Know to Protect Your Server

• Threat actor is selling a dump allegedly including 2,5M customers of service provider Ho Mobile

• Finland confirms that hackers breached MPs’ emails accounts

• IT Security News Daily Summary 2020-12-28

• Prepare for IoT’s role in U.S. CMMC compliance

• Uma lista de 8 pontos para acertar no gerenciamento Cisco

• Security by Design y UEM: el enfoque de la ciberseguridad en 2021

• Scanner de Porta: O que é e por que você deveria utilizá-lo

• Conceitos de ITOM: Monitoramento de processos

• As tendências tecnológicas para 2021

• Zix acquires CloudAlly backup for SaaS data protection

• Apple Hearing Study Bug Results in Accidental Historical Data Collection From Participants

• Defending the COVID-19 Vaccine Supply Chain

• Best of 2020: The SolarWinds supply chain hack: What you need to know

• CMMC Level 1 requirements?

• Did Shannon Alone Invent Our Future?

• The Joy of Tech® ‘Have A Merry Zoom-mas!’ (Belated)

• DEF CON 28 Safe Mode Demo Labs – Chris Nevin’s ‘Carnivore’

• Nefilim ransomware operators leak data stolen from Whirlpool

• Los Angeles Residents Able to Add COVID Vaccination Proof to Apple Wallet

• Github-Hosted Malware Decodes Cobalt Strike Beacon From Imgur Picture

• US CERT Warns of Another Solar Winds Vulnerability

• Finland says hackers accessed MPs’ emails accounts

• Experts Slam Facebook For “Laughable” Privacy Criticisms Of Apple

• Apple Launches First-Generation College Student Mentorship Program

• Security Vulnerability Detection with Vulnture

• Hackers phish 615,000 login credentials by using Facebook ads

• How Reverse Engineering Can Help Secure Your Linux Systems Against Malware>

• Hackers Amp Up COVID-19 IP Theft Attacks

• Privacy Management Firm OneTrust Secures $300M at $5.1B Valuation

• Goldman Sachs Buys Anti-Bot Startup White Ops

• Smart DNS for the New Network Edge: Emerging Requirements for DNS Encryption

• DevSecOps: The good, the bad, and the ugly

• DEF CON 28 Safe Mode Demo Labs – Matthew Creel’s ‘Redlure’

• Multi-platform card skimmer targets Shopify, BigCommerce, Zencart, and Woocommerce stores

• Caviar Introduces Custom ‘Pure Gold’ AirPods Max for $108,000

• Third-Party AirPods Max Solutions Seek to Address Smart Case Criticisms

• Morocco’s Partial Normalization with Israel Comes with Risks and Gains

• In 2020, Congress Threatened Our Speech and Security With the “EARN IT” Act

• EFF Members Rise Up: 2020 in Review

• Using Microsoft 365 Defender to protect against Solorigate

• A week in security (December 21- December 27)

• Hackers steal Defense Information from servers of Kawasaki Heavy

• GoDaddy Apologized For The Insensitive Phishing Test Of Its Staff

• A match made in heaven: best practices for StorageGRID and FabricPool

• Top 5 ways to protect MFA codes

• 10 Benefits of Running Cybersecurity Exercises

• Vulnerability Summary for the Week of December 21, 2020

• AI Enables Predictability and Better Business

• Protected: Rebranding Perception Point

• LG Begins Rolling Out AirPlay 2 and HomeKit to 2018 Smart TVs

• HomePod Mini Now Works With Select 18W Chargers Following 14.3 Software Update

• 7 Cybersecurity Frameworks To Reduce Cyber Risk

• Apple Holding Shopping Event in Japan on January 2-3, Offering Free Apple Store Gift Card With Select Products

• Tesla Software Update Hints at Support for Apple Music

• 1-15 December 2020 Cyber Attacks Timeline

• Twitter Download To Your Computer For Free

• Main areas to consider before implementing a new virtualized SQL server

• Voice Assistants Can Store And Leak Texts Typed On Smartphones In Proximity

• REvil hackers to leak photos of plastic surgery patients after massive hack

• Ransomware in 2020: A Banner Year for Extortion

• Google: Microsoft Improperly Patched Exploited Windows Vulnerability

• Russia’s SolarWinds Attack

• Preventing Developer Burnout in the Age of Rapid Software Delivery

• Security Predictions for 2021from the (ISC)² Community of Security Professionals (PART 1)

• New Zero-Day, Malware Indicate Second Group May Have Targeted SolarWinds

• Homomorphic Encryption: The ‘Golden Age’ of Cryptography

• Remote Desktop Bugs: Patches That Took Priority in a Pandemic Year

• How Your Digital Trails Wind Up in the Police’s Hands

• SolarWinds SUNBRUST backdoor investigation using ShiftLeft’s Code Property Graph

• A Month of Reckoning for SaaS software creators and consumers

• Ten Ways to Ensure Web Application Security

• Six Steps To Mobile Device Safety | Avast

• Sangoma Technologies Confirms Data Breach as Result of Ransomware Attack

• Beyond the Technical – Advise for those starting in Infosec

• 12 new state privacy and security laws explained: Is your business ready?

• Ransomware Group Threatens To Release Hospital Patient Photos

• California Authorises First Commercial Robo-Delivery Service

• SolarWinds Issues Fix After Massive Hacking Campaign

• Don’t Let Your Stored Procedures Lack Integrity

• Privacy in 2020 and What to Expect for the Year Ahead

• E-commerce app 21 Buttons exposes millions of users’ data

• What Comes Next for the Santa Clara Principles: 2020 in Review

• Trying to register your antivirus in Windows Security Center?

• Best of 2020: Signal App Crypto Cracked, Claims Cellebrite

• Vietnam targeted in complex supply chain attack

• Hackers now indulge in donations to Charity

• Most tragic Cyber Attacks of 2020

• DEF CON 28 Safe Mode Demo Labs – Vincent Rose’s ‘Starkiller’

• Robert M. Lee’s & Jeff Haas’ Little Bobby Comics – ‘WEEK 309’

• DEF CON 28 Safe Mode Demo Labs – Tamoaki Tani’s ‘Malconfscan With Cuckoo’

• Phishing Will Continue Wreak Havoc in 2021—Make Sure You’re Ready

• SaaS security in 2021

• Working together to suppress complex and organized fraud

• 12.9-Inch iPad Pro With Mini-LED Display Rumored to Launch in First Quarter of 2021

• CFOs taking strategic roles after overcoming COVID-19 challenges

• Data Mapping and Data Planning Are Essential for an Organization

• ISC Stormcast For Monday, December 28th 2020 https://isc.sans.edu/podcastdetail.html?id=7306, (Mon, Dec 28th)

• Trump signs 2021 funding bill, averting Tuesday shutdown

• Apple Looks to 2021 With Japanese New Year Ad Highlighting the App Store

• 2020-12-24 (Thursday) – Dridex infection example

Generated on 2020-12-29 23:55:09.650213