IT Security News Daily Summary 2021-03-05

• Microsoft, FireEye report 3 new malware linked to SolarWinds hackers

• OPM tells agencies to restart union talks to uproot Trump-era orders

• TMF money, more leave in Senate’s take on COVID relief

• At Least 30,000 U.S. Organizations Newly Hacked Via Holes in Microsoft’s Email Software

• Microsoft Exchange Server Exploits Hit Retail, Government, Education

• McAfee Is Indicted for Altcoin Pump-and-Dumps and ICO Schemes

• Apple’s Upcoming iPhone 12 MagSafe Battery Pack

• Why You Can’t Sue Your Broadband Monopoly

• EFF urges Google to ground its FLoC: ‘Pro-privacy’ third-party cookie replacement not actually great for privacy

• The Fastest Route to SASE

• virus (computer virus)

• WordPress Injection Anchors Widespread Malware Campaign

• U.S. DoD Weapons Programs Lack ‘Key’ Cybersecurity Measures

• 5 Ways Social Engineers Crack Into Human Beings

• Microsoft Adopted an ‘Aggressive’ Strategy for Sharing SolarWinds Attack Intel

• HAFNIUM Exchange Zero-Day Scanning

• What’s Good for Litigation Isn’t Necessarily Good for Cybersecurity

• The Questions FBI Director Christopher Wray Wasn’t Asked

• Facebook, It’s Time to Put the Rules in One Place

• BitSight Is A Partner for Cybersecurity In Law Enforcement

• Massive Supply-Chain Cyberattack Breaches Several Airlines

• 80% of senior IT leaders see cybersecurity protection deficits

• Hackers Target Russian Cybercrime Forums

• On International Women’s Day 2021, Does the ‘Rule of Steve’ Still Apply? Yes.

• Realistic Patch Management Tips, Post-SolarWinds

• Threat Roundup for February 26 to March 5

• John McAfee Indicted for ICO Manipulation, Securities Fraud

• GoldMax, GoldFinder, and Sibot, 3 new malware used by SolarWinds attackers

• A Look Inside Apple’s 23,000 Square-Foot Fitness+ Studio

• MacRumors Giveaway: Win an Apple Watch Series 6 and Band From BluShark

• Attivo Networks Launches ADAssessor for Continuous Visibility to Active Directory Security Exposures

• Cyber Defense Magazine nominated Cobwebs Technologies for Its 2021 InfoSec Awards for threat intelligence

• Four zero-days in Microsoft Exchange actively exploited in the wild

• Detecting Privilege Escalation

• BitSight Is Partner for Cybersecurity In Law Enforcement

• SolarWinds SUNBURST Backdoor DGA and Infected Domain Analysis

• Cybercrime Forum Breaches Are a Common Theme in 2021

• FTC Joins 38 States in Takedown of Massive Charity Robocall Operation

• Details of Two New Ransomware Types Released

• Stolen SendGrid Accounts Used in Phishing Attacks

• Threat actors hijacking Bitbucket and Docker Hub for Monero mining

• House GOP urges increase in defense spending

• What is cyber insurance? Everything you need to know about what it covers and how it works

• Facebook “Welcomes” Stronger Privacy Regulations

• Encrypted Traffic Strategies

• Apple Releases Third watchOS 7.4 Public Beta With iPhone Unlocking Feature

• Ray Liotta and Taron Egerton to Star in Apple TV+ Series ‘In With The Devil’

• China’s RedEcho accused of targeting India’s power grids

• Edge to core to cloud, part 3: On premises to the cloud, or cloud to on premises?

• Critics Blast Google’s Aim to Replace Browser Cookie with ‘FLoC’

• Thousands of Mobile Apps Expose Data via Misconfigured Cloud Containers

• US Warns of Fake Unemployment Benefit Websites

• BSides Calgary 2020 – Nigel Weber’s ‘Stay Classy – Class Object Model’

• Myanmar Democracy Under Fire: Military Coup Commands International Attention

• All the Apps That Support Apple’s Spatial Audio Feature

• Class Action Lawsuit Over Apple Providing Refurbished Replacement Devices Proceeding to Trial in August

• Malaysia and Singapore Airlines Breached in Third Party Hacks

• 16-28 February 2019 Cyber Attacks Timeline

• Zigbee inside the Mars Perseverance Mission and your smart home

• Failure to Report Breach Costs Mortgage Lender $1.5m

• Bug in Apple’s Find My Feature Could’ve Exposed Users’ Location Histories

• Cisco Secure Email: A Proven and Consistent Leader

• How To add Bot Management Solution in Your Web Security Measures?

• No, RSA Is Not Broken

• Review: Aqara Camera Hub G2H and Sensors Offer Easy Setup and Fast Response Times in Compact Designs

• iPhone 13 Rumor Recap: Smaller Notch, Larger Batteries, 120Hz for Pro Models, Improved 5G, Wi-Fi 6E, and More

• Cyber Security Roundup for March 2021

• Reasons Why the Security Industry is Protecting the Wrong Thing

• Oh SITA: Airline IT provider confirms passenger data leaked after major ‘cyber-attack’

• Ransomware news trending on Google

• Protecting Our & Your Health Data: 3 Pillars of COVID-19 Era Data Security

• Microsoft: We’ve found three more pieces of malware used by the SolarWinds attackers

• D-Link, IoT Devices Under Attack By Tor-Based Gafgyt Variant

• NIST Cybersecurity Framework: A cheat sheet for professionals

• Ransomware Takedowns Underscore Need for Private-Public Cybersecurity Collaboration

• CompuCom MSP Hit By DarkSide Ransomware Cyberattack

• Threat Actors Target PrismHR in a Potential Ransomware Attack

• Russian Hacking Forum Maza Hijacked, Suffers Data Breach

• Make Sure That Stimulus Check Lands in the Right Bank Account

• Threat Model Humor

• Deals: Take Up to $100 Off 2020 iPad Pro Models at Amazon and B&H Photo

• Polecat, a Data Analytics Agency Held to Ransom After Leaving a Server Unsecured

• Cloud Clarity: Adding Security and Control to the AWS Shared Responsibility Model

• These two unusual versions of ransomware tell us a lot about how attacks are evolving

• Multiple Airlines Impacted by Data Breach at Aviation IT Firm SITA

• FTC Joins 38 States Taking Down Massive Charity Robocall Operation

• ‘For All Mankind,’ ‘Servant,’ and ‘Amazing Stories’ Nominated for Saturn Awards

• Email Protection 101: What You Need to Know About Secure Communication

• Microsoft’s windows.com Domain Hit with Bit-flipping

• The Biden Administration Considers Cybersecurity a Top Priority for National Security

• Global Air Transport Giant SITA Confirms Security Breach

• (VIDEO) Getting Started With Duo – Step 2: Enrollment & Self-Remediation

• Report: Russian Hackers Exploit Lithuanian Infrastructure

• NSA, DHS Issue Guidance on Protective DNS

• Reblaze Rolls Out Managed Reverse Proxy Security Service

• A Technical Approach to Data Loss Prevention (DLP)

• Rising Demand for DDoS Protection Software Market By 2020-2028

• How Does Ransomware Spread Globally?

• YouTube CEO Outlines Criteria To Restore Donald Trump Account

• Avast Identifies Ursnif Malware Victims | Avast

• Trend Micro: Remote work drove high-risk email threats up 32% in 2020

• FTC joins 38 states in takedown of massive charity robocall operation

• Supermicro, Pulse Secure Respond to Trickbot’s Ability to Target Firmware

• Trace An Object initiative expands to the Asia Pacific region

• Weekly Update 233

• ISC Stormcast For Friday, March 5th, 2021 https://isc.sans.edu/podcastdetail.html?id=7400, (Fri, Mar 5th)

• Microsoft Edge 89 Brings Vertical Tabs and New History View

• 15 Schools Hit By Cyberattack In Nottinghamshire

• SECURITY ALERT: Microsoft released emergency fixes for 4 Zero-Days in Exchange

• Colorado-Based Sengrid Email Marketing Company Accounts Were Hacked

• CISSPs from Around the Globe: An Interview with Chris Clinton

• Top Reasons Behind the VPN Pricing and How to Save When Buying

• The Coding Challenge Most Developers Overlook

• Be a Hero at Home: Why you Should Become a Certified Ethical Hacker

• SolarWinds: “IT’s Pearl Harbor.”

• Salesforce’s LinkedIn Account Hijacked With Black Lives Matter Post

• $100 in crypto for a kilo of gold: Scammer pleads guilty to investor fraud

• South Africa Opposes WhatsApp-Facebook Data Sharing

• Three New Malware Strains Linked to SolarWinds Hackers

• Docker Hub and Bitbucket Resources Hijacked for Crypto-Mining

• Managed Services provider CompuCom by Darkside ransomware

• What is a Remote Access Trojan (RAT)?

• Best practices for Securing Office 365 against pervasive cloud collaboration risks

• Virginia data protection bill signed into law

• Amazon Goes Till-Less With Grocery Store In London

• FCW Insider: March 5

• Microsoft Exchange zero-day vulnerabilities exploited in attacks against US local governments

• While Reg readers know the difference between a true hacker and cyber-crook, for everyone else, hacking means illegal activity

• Fraudsters Circumvent 3D Secure with Social Engineering

• Mazafaka — Elite Hacking and Cybercrime Forum — Got Hacked!

• Google Cloud Certifications — Get Prep Courses and Practice Tests at 95% Discount

• Microsoft Visual Studio Code Updated With Official Apple Silicon Support

• Twitter Reportedly Working on ‘Undo Send’ Feature for Tweets

• Dutch government: Did we say 10 ‘high data protection risks’ in Google Workspace block adoption? Make that 8

• Cyberattack shuts down online learning at 15 UK schools

• Someone Is Hacking Cybercrime Forums and Leaking User Data

• SITA Supply Chain Breach Hits Multiple Airlines

• Wi-Fi Mouse Application Detected with Bug

• Researchers Find 3 New Malware Strains Used by SolarWinds Hackers

• Apple Pay Promo Offers 10% Back in Bed Bath & Beyond Rewards

• Cybercriminals Finding Ways to Bypass 3D Secure

• Decentralizing Cloud Security Management

• Five privilege escalation flaws fixed in Linux Kernel

• Apple Held Top Spot in Global Smartwatch Market in Q4 2020, Shipping 13 Million Apple Watch Series 6 and SE Models

• In battle with U.S., China to focus on 7 ‘frontier’ technologies from chips to brain-computer fusion

• Want your endpoint security product in the ‘Microsoft Consumer Antivirus Providers for Windows’ ?

• It’s an Amazing Time to Be in Digital Identity

• Zero-Trust in a Trusting World

• Spam Farm Spotted in the Wild, (Fri, Mar 5th)

• DarkSide Ransomware targets CompuCom Systems

• Cyber Attack on Indian Stock Exchange

• Breach Trends & Insights – February 2021

• Risky business: 3 timeless approaches to reduce security risk in 2021

• March 2021 Patch Tuesday forecast: Off to an early start

• Cybersecurity risks and challenges facing the financial industry

• Microsoft rushes out fixes for four zero‑day flaws in Exchange Server

• Cybercriminals increasingly impersonate business-related apps

• Credential exposure trends: You need a better password

• Biden administration labels China top tech threat, promises proportionate responses to cyberattacks

• OLED 10.9-Inch iPad Rumored for Early 2022, 12.9-Inch iPad Pro and 16-Inch MacBook Pro Could Follow

• CrowdStrike Falcon platform enhancements improve SOC efficiency

• In the digital economy, computing power defines productivity

• To support a growing remote workforce, the public sector turned to the cloud

• China spending on research and development to rise 7% per year in push for major tech breakthroughs

• Attackers Utilized Weaponized Microsoft Office Documents to Deliver ObliqueRAT

• Kaspersky detected new ransomware attack on Russian companies

• Attivo offers solution for preventing the misuse of Active Directory

• Awake’s NDR platform strengthens cybersecurity across cloud, hybrid and IoT environments

• BrandPost: How to Cope with Disruptive Shifts in Cyberattacks

• Detection and Response to Exploitation of Microsoft Exchange Zero-Day Vulnerabilities

• Samsung Electronics, Mastercard and Samsung Card develop fingerprint biometric payment card

• Unbound Security CORE enables enterprises to reimagine cryptographic infrastructure security

• Siren 11.1 simplifies everyday tasks for the analyst and business user

• SIRP’s SOAR platform helps organizations reduce incident response time

• Serverless and PaaS Security with CloudPassage Halo

• China’s and Russia’s Spying Sprees Will Take Years to Unpack

• Developers Start Receiving $500 Credits for Returning DTK Mac Minis

• OSSA introduces Camera Cyber Security Specification and App Developer Council

• GPY241 expands MaxLinear’s portfolio of Ethernet physical layer transceivers and switches

• CoreView add-on tool gets deeper insight into Microsoft Teams

• Under new law, NIST looks to map out vulnerability disclosure policies for government

• IDnow acquires identity Trust Management AG to expand portfolio of verification methods

• Tyto Athene to acquire AT&T Government Solutions

• Blumira and Cerium Networks simplify threat detection and response

• IOTech Edge XRT: A time-critical edge platform for Microsoft Azure Sphere

• Discussing SolarWinds hack, FireEye CEO says US is ‘playing defense’ in cyberspace

• Fireeye CEO on state of cyberthreats: ‘I’ve never seen anything like it’

• Video: Folding@Home Director Dr. Gregory Bowman | Avast

• Rebuild security and compliance foundations with automation

• Business Apps Spoofed in 45% of Impersonation Attacks

• White-Label Marketplace helps resellers automate their cloud business

• IBM expands executive team for NewCo

• Cyber Defense Labs names Marla Beckham as Chief Financial Officer

• How External Threat Intelligence Enables Security Teams to Monitor GitHub for Code Leaks

• No new OMB pick yet, White House says

• Nevada may invite tech firms to self-governing company towns

• Microsoft, FireEye Unmask More Malware Linked to SolarWinds Attackers

• Facebook Is Training AI To “See” Using Billions Of User Photos

• Microsoft, FireEye Uncover More Malware Used in the SolarWinds Campaign

• Healthcare Still Seeing High Level of Attacker Activity

• Five Reforms the FTC Can Undertake Now to Strengthen the Agency

• Hong Kong’s Highest Court Reviews the National Security Law—Carefully

• IT Security News Daily Summary 2021-03-04

• Top Russian hacker forums Maza, Verified hacked; data leaked online

• Republicans slam Biden’s defense policy pick for past tweets

• How ready-to-use apps expedite citizen services

• CISA orders agencies unplug, update on-prem Exchange servers

• Data prep, analysis helps county keep probationers healthy and sheltered

• With its acquisition of Auth0, Okta goes all in on CIAM

• Cyberattackers Target Top Russian Cybercrime Forums

• Update to Alert on Mitigating Microsoft Exchange Server Vulnerabilities

• The Case for Collective Defense of the Public Sector

• Sunshuttle, the fourth malware allegedly linked to SolarWinds hack

• AdGuard names 6,000+ web trackers that use CNAME chicanery: Feel free to feed them into your browser’s filter

• GAO report finds DOD’s weapons programs lack clear cybersecurity guidelines

• How to work with Vault Secrets Engines

• Microsoft makes passwordless push in Azure Active Directory

• Security Researchers Develop Framework for Tracking Bluetooth Devices Using Find My

• What Do the Available Public Comments About the Trump Ban Actually Say?

• Passwordless Authentication – Going Beyond the Hype With 3 Key Considerations

• The Zero Trust Approach to Important Control Planes

• IT Security firm Qualys extorted by Clop gang after data breach

• How to become a threat hunter

• Cryptocurrency Fraudster Steals $16m

• Four Microsoft Exchange Zero-Days Exploited by China

• LinkedIn Won’t Use IDFA After Apple’s App Tracking Transparency Changes

• BEC Scammers Take a New Approach to Large Payouts

• DHS Warns of Recent Exchange Vulnerabilities

• Microsoft Announces New Effort To Stop Excel Macros

• APT RedEcho Targets India’s Power Sector

• Attacks Targeting Microsoft Exchange: Check Point customers remain protected

• S3 Ep22: Cryptographic escapes and social media scams [Podcast]

• Ransomware Attack on Arizona Optometrist

• Two-Thirds of Irish Women Harassed Online

• Secure Laptops & the Enterprise of the Future

• China and Russia’s Spying Sprees Will Take Years to Unpack

• Joint NSA and CISA Guidance on Strengthening Cyber Defense Through Protective DNS

• New SUNSHUTTLE Second-Stage Backdoor Uncovered Targeting U.S.-Based
  Entity; Possible Connection to UNC2452

• An Analysis of Past Mistakes

• Collective Defense for the insurance sector

• Joy Of Tech® ‘Google Goes All Pro-Privacy!’

• Okta Acquisition of Auth0 Signals DevSecOps Shift Left

• Chinese Exchange Hack: At Best, Microsoft is Incompetent

• Apple Seeds Third Beta of watchOS 7.4 to Developers

• Plex Now Integrates With Apple’s TV App on iPhone, iPad, and Apple TV

• What’s on Your iPhone Home Screen?

• Facebook Lifts Ban On Political Advertising In US

• When Viruses Mutate: Did SunCrypt Ransomware Evolve from QNAPCrypt?

• OMB orders agencies to stop enforcing Trump’s diversity training purge

• CISA Orders Federal Agencies to Patch Exchange Servers

• National Surveillance Camera Rollout Roils Privacy Activists

• Privilege Escalation Bugs Patched in Linux Kernel

• New Social Security Scam Spoofs Government Badges

• Zero-day vulnerabilities in Microsoft Exchange Server

• EU Prepares to Charge Apple in Antitrust Dispute With Spotify

• Apple Clarifies How Siri Music Service Settings Work in iOS 14.5

• APT-Hunter – Threat Hunting Tool via Windows Event Log

• SpaceX Mars Rocket Lands Upright, But Later Explodes

• Does Linux Need Antivirus? | Avast

• Video: Avast CTO Michal Pěchouček interviews Folding@Home Director Dr. Gregory Bowman

• How Enterprise Design Thinking Can Improve Data Security Solutions

• Singapore Airlines frequent flyer members hit in third-party data security breach

• Report: Quality, not quantity, is the hallmark of the latest waves of phishing attacks

• Managed Services Provider CompuCom Hit by Malware

• Experts Discuss How to Achieve Greater Gender Equality in the Tech Industry

• New ObliqueRAT Malware Campaign Now Integrates Steganography, Researchers Finds

• Zee5 Once Again Caught In Data Breach; Info Of 9 Million Users Exposed

• US Telemarketing Company Leaks Data of 114,000 Consumers In a Cloud Storage Error

• Qualys Is the Latest Victim of Accellion Data Breach

• VMware Releases Security Update

• Cisco Releases Security Updates

• VMware addresses Remote Code Execution issue in View Planner

• Security Intelligence Handbook Chapter 10: A Different Kind of Brand Protection

• Satechi Launches New 9-in-1 On-the-Go Multiport USB-C Adapter

• iPad and MacBook Models With OLED Displays Rumored to Launch in 2022

• GoldMax, GoldFinder, and Sibot: Analyzing NOBELIUM’s layered persistence

• A better cloud access security broker: Securing your SaaS cloud apps and services with Microsoft Cloud App Security

• Virginia files data protection laws in align with UK GDPR

• WhatsApp Adds Voice And Video Calling To Desktop App

• The Shift to E-Commerce: How Retail Cybersecurity is Changing

• Doppler expands secrets management to the enterprise with $6.5M in funding

• COVID-19 Vaccine Spear-Phishing Attacks Jump 26 Percent

• How banks and banking customers can protect themselves against financial crimes

• Cybercriminals Finding Ways to Bypass ‘3D Secure’ Fraud Prevention System

• Three Top Russian Cybercrime Forums Hacked

• FacePay fare payment system to launch in Moscow metro by the end of the year

• Crypto Exchange Platform WazirX Hit a Record High of $2 Billion in Trading Volumes

• Why We Need More Blue Team Voices at the Table

• Thousands of Android and iOS Apps Leak Data From the Cloud

• DTEX Helps the A3C “Uplift Cyber Security Resilience”

• The March IronNet Threat Intelligence Brief

• How South Africa’s POPIA will Affect your Business

• Maza Russian Cybercriminal Forum Suffers Data Breach

• Researcher Finds 5 Privilege Escalation Vulns In Linux Kernel

• Microsoft Exchange Zero-Day Attackers Spy On U.S. Targets

• Accellion Zero Day Claims A New Victim In Qualys

• iOS 14.5 Beta 3 Includes ‘Item Safety Feature’ for AirTags and Other Tracked Items to Help Prevent Stalking

• Understanding Biden’s Invocation of the Defense Production Act

• Zee5 Platform is Once Again Affected by a Data Breach

• What is Endpoint Detection? Definition, M.O., Key Functionalities and Benefits

• ObliqueRAT Infiltrates into Victims’ Endpoints Using Malicious Documents

• The SolarWinds Incident May Be the Start of New Data Breach Notification Law in the US

• Shadow IT: Your Urgent Questions Answered

• CMA Launches Probe Of Apple’s App Store Policies

• Marketing firm CallX exposed customers data including call recordings

• FCW Insider: March 4

• Quick Hits

• Wall Street targeted by new Capital Call investment email scammers

• German Officials Want Emails, IMs Tied to Real-World ID

• Cybercriminals Target Industrial Organizations in Information Theft Campaign

• Good-bye, Blocklist Removal Center. Hello, IP and Domain Reputation Checker.

• Lifting Each Other Up: A Celebration of Women in Cybersecurity and Their Advocates – Part 1

• New vArmour Research Reveals 76% of U.S. Employees Have Inappropriate Access to Applications and Data

• CISA emergency directive urges to fix Microsoft Exchange zero-days

• ‘CEO Fraud’ Phishing Kit on the Rise

• Eve Expands Thread Support With HomeKit-Enabled Eve Energy and Eve Weather

• Deals: Amazon Discounts 256GB Wi-Fi iPad Air to New Low Price of $679.99 ($69 Off)

• Qualys Hit With Ransomware And Customer Invoices Leaked

• Bad Bot Traffic on Healthcare Websites Rises 372% As Vaccines Become Available Globally

• How to prevent data leaks

• Several Cisco Products Exposed to DoS Attacks Due to Snort Vulnerability

• Financial Crime Surges in 2020 Following Shift to Digital Banking and Commerce

• Intel: More Than 90% of Our Vulnerabilities Found via Research

• Google Will Use ‘FLoC’ for Ad Targeting Once 3rd-Party Cookies Are Dead

• World Software Giant Selects Acunetix DAST+IAST for SDLC Testing

• When “Good Enough” Bot Protection Negatively Impacts the Bottom Line

• New ‘CEO Fraud’ Phishing Kit Scam on the Rise

• Apple TV+ Billie Eilish Documentary Drew Record Number of New Subscribers

• Expert Insight On Ryuk’s Revenge: Infamous Ransomware Is Back And Stronger Than Ever

• Experts Reaction On PrismHR Hit By Ransomware Attack

• Update now! Chrome fix patches in-the-wild zero-day

• Like a challenge in a high profile ‘face-of-IT’ role? Welcome to the Home Office

• New Ursnif Banking Malware Campaign Steals Credit Card, Banking, and Payment Information

• Most Reliable Hosting Company Sites in February 2021

• CISA issues emergency directive to agencies: deal with Microsoft Exchange zero-days now

• Linux distributions: All the talent and hard work that goes into building a good one

• Microsoft: We’re cracking down on Excel macro malware

• Accellion zero-day claims a new victim in cybersecurity company Qualys

• Ransomware as a service is the new big problem for business

• Multiple Cyberspy Groups Target Microsoft Exchange Servers via Zero-Day Flaws

• Apple Launches ‘Apple for Kids’ Support Portal for Parents and Guardians

• Fraud attempts skyrocketed in 2020 according to latest Financial Crime Report from Feedzai

• The US Managed Service Provider CompuCom Confirms Ongoing Outage Following Malware Incident

• Microsoft Warns Customers Against New China Cyberattack on Exchange Email

• What Are the Best Free Cybersecurity Webinars?

• All About Cookies – Intego Mac Podcast Episode 177

• Chip Shortage Continues Pain For Car Makers

• Okta and Auth0: A $6.5 billion bet that identity will warrant its own cloud

• Qualys Confirms Unauthorized Access to Data via Accellion Hack

• Using TikTok? Check out these six security tips

• #COVID19 Vaccine Phishing Scams Surge 26% in Three Months

• Group-IB: ransomware empire prospers in pandemic-hit world. Attacks grow by 150%

• UK Antitrust Watchdog to Investigate Apple’s App Store Policies [Updated]

• Oxfam – 1,834,006 breached accounts

• Clubhouse app raises security, privacy concerns

• Google Won’t Use Other Tools When It Ends Chrome Cookies

• COVID-19 website warning: rise in vaccine-related domain registrations means increased risk of scams

• Maza Russian cybercriminal forum suffers data breach

• Ransomware Attacks Soared 150% in 2020

• GRUB2 boot loader maintainers fixed hundreds of flaws

• Apple TV+ Animated Kids Film ‘Wolfwalkers’ Nominated for 10 Annie Awards

• UK Antitrust Watchdog to Investigate Apple’s App Store Policies

• Google: No tracking tools to replace third-party cookies in Chrome

• Women in Cyber: Workplace Equality Will Take a Decade

• Python Package Index Removed 3,653 Noxious Packages after a Vulnerability

• 100 Italian Banks Hit by Ursnif Trojan

• Extortion Gang Breaches Cybersecurity Firm Qualys Using Accellion Exploit

• WhatsApp Desktop App Gains Support for Voice and Video Calls

• CISA Issues Emergency Directive on In-the-Wild Microsoft Exchange Flaws

• HIPAA Security Requirements: What They Really Mean

• A Close Call Prompts Security Reassessment

• From VBS, PowerShell, C Sharp, Process Hollowing to RAT, (Thu, Mar 4th)

• Want to add antivirus to your existing portfolio?

• Okta acquires Auth0 for $6.5 billion

• Would you let users vouch for unknown software’s safety with an upvote? Google does

• Automation Mistakes: Avoiding Your Next Failure

• Security starts with architecture

• Major Cyber Attack on Qualys Cloud Computing Security Vendor

• DeepMind of Google to use AI to discover drugs faster

• Connections Between Four of 2020’s Biggest Ransomware Strains Found

• Get started with CrowdSec v.1.0.X>

• Not all cybercriminals are sophisticated

• Cybercriminals innovate to find vulnerabilities that can be monetized

• 32% of enterprises experienced unauthorized access to cloud resources

• DLA orders modular 3D printing pod

• Flat defense budget, cost-savings push seems likely for 2022

• Still more questions than answers on SolarWinds attack

• Twitter and Twitch added to list of those concerned with Australia’s Online Safety Bill

• MalwareTech, WannaCry and Kronos – Understanding the Connections

• PCI DSS 4.0 Is Coming – Are You Ready?

• Microsoft Pays $50,000 Bounty for Account Takeover Vulnerability

• The economics behind global disinformation engines and strategies for mitigation

• Businesses trust their remote employees are sufficiently skilled to mitigate cybersecurity risks

• Check Point Harmony Endpoint recognized as a Top Product in Corporate Endpoint Protection by AV-TEST

• Arcserve UDP 8.0 offers ransomware prevention and data protection

• BitDam ATP+ protects Office 365 users from unknown threats

• Another Chrome zero-day exploit – so get that update done!

• ISC Stormcast For Thursday, March 4th, 2021 https://isc.sans.edu/podcastdetail.html?id=7398, (Thu, Mar 4th)

• Red Hat Enterprise Linux 8.1 achieves Common Criteria Certification

• InVue RAC Lock: Visibility and control for server racks in data centers

• Infocyte inspects and exposes security risk within Microsoft 365 environments

• Researchers discover that privacy-preserving tools leave private data anything but

• EU leaders aim at boosting defense and security, including cybersecurity

• Gootkit delivery platform Gootloader used to deliver additional payloads

• API Security Weekly: Issue #123

• More Girls are Now Joining the CyberSecurity Industry

• Silverfort Unified Identity Protection platform allows the migration of all hybrid assets

• LG Innotek Wi-Fi 6E module improves communication performance and durability

• Seagate and StorONE partner to deliver a series of hybrid storage systems

• Anuta ATOM Cloud increases operational efficiency and reduces the potential for errors

• Armor Anywhere and VMware Carbon Black extend protection to detect and stop advanced threats

• Heat-free optical switch would enable optical quantum computing chips

• Mitigating your Java code security debt

• Matt DeFrain joins MorganFranklin as senior director of cybersecurity business development

• KIOXIA 1TB UFS shortens application storage capacity demanded by 5G

• Aruba collaborates with Microsoft to accelerate digital transformation from edge-to-cloud

• Onapsis Platform for SAP SuccessFactors ensures security and compliance in the intelligent enterprise

• More Details Emerge on the Microsoft Exchange Server Attacks

• Intel: Paid Research Caught More Than 90% of Our Vulnerabilities

• Gab Has Been Breached

• Clop ransomware gang leaks data allegedly stolen from cybersecurity firm Qualys

• Twitter CFO: Apple’s App Tracking Transparency Changes ‘Level the Playing Field’

• Ping Identity appoints Diane Gherson to its board of directors

• Tifenn Dano Kwan joins Collibra as CMO

• Google’s FLoC Is a Terrible Idea

Generated on 2021-03-05 23:55:14.028154