IT Security News Daily Summary 2021-05-04

• Prepare for the next Sunburst by protecting controlled unclassified information

• Better acquisition data would improve DOD oversight

• Earthquake warning network now covers West Coast

• Why open source adoption in federal IT is poised to accelerate

• Lawmakers seek new probe into AWS JEDI collusion

• Global Phishing Attacks Spawn Three New Malware Strains

• iPhone 13 Pro Max Dummy Model Depicts Smaller Notch

• Epic CEO Tim Sweeney Admits App Store’s 30% Cut Is Similar to Consoles, Would Have Accepted Special Deal With Apple

• ‘Millions’ of Dell PCs will grant malware, rogue users admin-level access if asked nicely

• Microsoft Highlighted ‘BadAlloc’ Memory Allocation Flaws In IoT Devices And Networks

• Feds seize fraud domain claiming to provide COVID-19 vaccine

• How to Stop the Popups

• Lawmakers look to revive collusion case against Amazon in JEDI

• Navy looks to business systems modernization to enhance performance, reduce costs

• Cloud adoption is accelerating, but cloud security might be an issue

• Expert: The cloud is more secure than on-prem, but the speed of adoption is making it less so

• Qualys Flags Gaping Security Holes in Exim Mail Server

• More Companies Adopting DevOps & Agile for Security

• Hundreds of Millions of Dell Computers Potentially Vulnerable to Attack

• Planning Our Passwordless Future

• CPDP 2021 – Moderator: Sophie Stalla-Bourdillon ‘Multi-Party Data Sharing And Data Subjects As Beneficiaries: How To Accelerate Accountable Data Sharing’

• A massive DDoS knocked offline Belgian government websites

• Former Apple Employee Responds to Lawsuit Accusing Him of Leaking Trade Secrets to Media

• Tile CEO: ‘We Welcome Competition From Apple, But We Think It Needs to Be Fair’

• Apple Seeds Second Beta of macOS Big Sur 11.4 to Developers

• Hunter Fan Company Expanding Lineup of HomeKit-Enabled Ceiling Fans

• Hands-On With Brydge’s 12.9-Inch iPad Pro Keyboard With Trackpad

• Algorithms improve how we protect our data

• ‘Millions’ of Dell PCs will grant malware, rogue users admin-level access if they ask nicely

• How Cryptocurrency and Cybercrime Trends Influence One Another

• They Told Their Therapists Everything. Hackers Leaked It All

• Alien Mobile Malware Evades Detection, Increases Targets

• 10 Exploits Cybersecurity Professionals are Concerned About

• Red Hat open-sources StackRox Kubernetes security product

• Intel To Invest $3.5bn To Expand New Mexico Factory

• Avaddon hackers steal SIM card data from Telstra service provider

• Defense Is Still the Best Offense: Why Continuous Vulnerability Management Is Essential

• SecureLink: 51% of organizations experienced a third-party data breach

• Pulse Secure VPNs Get a Fix for Critical Zero-Day Bugs

• The Wages of Password Re-use: Your Money or Your Life

• Fake Vaccine Domain Seized

• Can Organizations Secure Remote Workers for the Long Haul?

• Scripps Health Responds to Cyberattack

• The UNC2529 Triple Double: A Trifecta Phishing Campaign

• Joy Of Tech® ‘Apple, Spotify And The EU’

• Improve Security Effectiveness and Efficiency by Validating Security Tools

• Most of Exim email servers could be hacked by exploiting 21Nails flaws

• Synopsys Launches New Tool for Automated Application Security

• Enabling Hardware-enforced Stack Protection (cetcompat) in Chrome

• Spectre attacks come back from the dead

• TMF payback rules relaxed for cyber upgrades, pandemic response

• Best VPN in 2021: Expert reviews of the best VPN services

• Ransomware Hackers Target Popular Cloud Service Provider ‘Swiss Cloud’

• Philippines Solicitor-General’s Office Breached Data Was Public

• Sectigo Acquires SiteLock, Solidifying Its Market-Leading Position in Web Security

• New Advanced AlienApps for Fortinet

• Bridging the Cybersecurity frontier: SaaS

• Common Ways on how to Remove Your Personal Information from Google

• BrandPost: Achieving Consistent Security Policies Across the Entire Infrastructure

• BrandPost: Closing the Cyber Skills Gap with Fortinet’s Training Advancement Agenda (TAA)

• insider threat

• Hundreds of Millions of Dell Users at Risk from Kernel-Privilege Bugs

• Apple Fixes Zero‑Day Security Bugs Under Active Attack

• Facebook: Don’t expect full end-to-end encryption on Messenger until 2022 ‘at the earliest’

• Smart TVs in China Found to Be Spying on Their Owners

• Virgin Active SA Suffers Cyber-Attack

• XM Cyber Announces Integration with Palo Alto Network’s Cortex XSOAR

• Important Apple Updates, (Tue, May 4th)

• Three New Malware Families Found In Global Finance Phish

• 4,700 Amazon Employees Had Unauthorized Access To Private Seller Data

• Deepfake Attacks Are About To Surge, Experts Warn

• Dell Patches Vulnerable Driver For Over A Decade Of Products

• Cloud Security with Microsoft Project Freta

• How Cost Cutting on Cybersecurity Presents an Opportunity for Hackers

• Set Up Okta as Identity Provider on Mulesoft Anypoint Platform

• Fraudulent Apps that Automatically Charge you Money Spotted in Google Play

• Channel Account Manager Brearna Leopold on the Power of Seizing Every Opportunity

• Three new malware families found in global finance phishing campaign

• New Variant of Buer Malware Loader Written in Rust to Evade Detection

• High-Severity Dell Driver Vulnerabilities Impact Hundreds of Millions of Devices

• UK Cyber Security Association Officially Opens for Membership

• Third Parties Caused Data Breaches at 51% of Organizations

• Apple Releases Security Updates

• Hundreds of millions Of Dell PCs affected by CVE-2021-21551 flaws

• Compliance clarity with Red Hat Insights

• Chinese Military-Civil Fusion and Section 1260H: Congress Incorporates Defense Contributors

• Apple Hires Google AI Scientist Samy Bengio

• BadAlloc – Microsoft Warns of Multiple Vulnerabilities That Affects Wide Range of IoT & OT Devices

• Most Reliable Hosting Company Sites in April 2021

• Adopting Microsegmentation Into Your Zero Trust Model, Part 2

• Cybersecurity compliance startup Vanta raises $50M

• Sneakers, Gaming, Nvidia Cards: Retailers Can Stop Shopping Bots

• Apple hurries out fixes for WebKit zero-days

• It’s Time to Ditch Celebrity Cybersecurity

• Tesla Remotely Hacked from a Drone

• Phisher Errors Lower Entry Barriers for Wanna-be Phishers

• Expert Commentary – Ofcom Warn People Not to Trust Caller ID

• Expert Insights On Ransomware Task Force Report

• Experts Comments on World Password Day

• 92% Of Organisations Who Pay Ransoms Don’t Get All Their Data Back

• Threat Prevention 101: What You Need to Know to Keep Your Business Safe

• Scripps Health’s Network Hit by Ransomware Attack

• N3TW0RM Ransomware Gang Emerges In Israel

• Babuk Focuses On Data-Theft Extortion

• RM3 – Curiosities of the wildest banking malware

• Bill And Melinda Gates To Divorce

• Third-party ransomware risk is real, but Black Kite’s latest tool can help

• Patch issued to tackle critical security issues present in Dell driver software since 2009

• Bait Boost: Phishers Delivering Increasingly Convincing Lures

• SMS Malware that Imitates COVID Registration App Targets Indian Users

• Trend Micro Unveils New OT Endpoint Security Solution Made by TXOne

• Australia’s Proposed Curriculum Aims to Teach Five-Year-Olds About Online Privacy and Cybersecurity

• JupiterOne Secures $30 Million in Series-B Funding Round

• Okta Completes Acquisition of Auth0

• Deals: Get Apple’s AirPods Pro for $189.99 Today on Woot ($59 Off)

• Security Expert Re: Tesla Cars Hacked Remotely by Drone

• First Horizon Bank Accts Breached by “Unauthorized Party”, Millions Removed

• First Horizon Corporation Affected by A Data Breach With Clients Funds Stolen

• Security Researcher Released PoC Exploit for High-severity Vulnerability in Microsoft Exchange

• Cybersecurity firm offering new way to detect malware attracts investors

• Expert Interview: How to Secure Critical Infrastructure With Operational Technology

• This malware has been rewritten in the Rust programming language to make it harder to spot

• Acronis banks $250M in funds to grow portfolio, partners

• Acronis Raises $250 Million at $2.5 Billion Valuation

• Apple products hit by fourfecta of zero-day exploits – patch now!

• Tesla Car Hacked Remotely by Drone Via Zero-Click Exploit

• UNICC and Group-IB Shut Down 134 Scam Websites In a Major Crackdown

• How Should the Service Desk Reset Passwords?

• New Pingback Malware Using ICMP Tunneling to Evade C&C Detection

• New Research Reveals 60% of Respondents Have Increased Security Concerns Since Adopting Cloud Native Computing

• AirTag Owners Bemoan Inability to Let Others Track Their Items Via Family Sharing

• Expert Insight On Buer Malware Rewritten in Rust

• Why Software Supply Chain Attacks Are Inevitable and What You Must Do to Protect Your Applications

• The Key to Cybersecurity is an Educated Workforce

• Critical IP Address Validation Vulnerability Also Affects Python Projects

• Why Duo Security Is a Great Place To Work

• The 2021 Two-Factor Evaluation Guide Is Here!

• 4 Best Practices for Attack Surface Management

• Keeping Excess Out of Access

• OneTrust acquires Shared Assessments to standardize third-party risk management

• Aryaka gains SASE features with Secucloud acquisition

• JupiterOne nabs $30M to help companies manage cybersecurity data

• Data backup company Acronis secures $250M to expand datacenter footprint

• This ambitious Microsoft project aims to fix cloud computing security

• State-Sponsored Successor to “Project Signal” Ransomware Campaign Discovered

• Scripps Health Knocked Offline by Ransomware

• Acronis, the global leader in cyber protection, receives more than $250M investment at a $2.5B valuation

• Breached Online Ordering Platforms Expose Hundreds Of Restaurants

• New community to gives cybersecurity leaders outside the Fortune 2000 a forum to collaborate

• Verizon Sells Internet Icons AOL, Yahoo

• The Developer’s Guide to Relationship-based Access Control

• Don’t Make Headlines Over an Insider Incident: Lessons From the Frontlines

• Enhance Application Security with Nutanix Flow and Check Point CloudGuard

• Microsoft’s new open-source tool could stop your AI from getting hacked

• Suspected Iranian Ransomware Group Targets Israeli Firms

• Pulse Secure Patches Critical Zero-Day Flaw

• Apple Fixes Zero-Day Flaws in Unscheduled iOS Update – Here’s How to Patch

• Then a Hacker Began Posting Patients’ Deepest Secrets Online

• FBI is probably patching your system for you without your consent

• 8 top identity and access management tools

• CSO50 2021 awards showcase world-class security strategies

• 5 key qualities of successful CISOs, and how to develop them

• BT Half Price Fibre Broadband For Low Income Households

• Breaking Up With Legacy Security Solutions Can Create Peace Between Security and DevOps

• Quick Hits

• FCW Insider: May 4, 2021

• Problems installing iOS 14.5.1? Here’s what you need to know

• Group-IB revealed a distributed network of fraudulent sites imitating WHO

• City of Toronto Hit by a Potential Cyber Breach

• OpenBullet Exploited for Credential Stuffing

• AirTag Removable Battery Sparks Child Safety Concerns

• iPad Shipments to Stay Stable in Second Quarter Despite Chip Shortages

• Apple fixes four zero-days under attack

• CSO Hall of Fame honorees

• Apple Developing Foldable iPhone For 2023 – Report

• Apple Privacy Update And Advertisers | Avast

• ATT&CK v9 Introduces Containers, Google Workspace

• Critical Patch Out for Critical Pulse Secure VPN 0-Day Under Attack

• Project Signal: a second Iranian State-Sponsored Ransomware Operation

• AirTags Removable Battery Sparks Child Safety Concerns

• Imperva acquires CloudVector to provide visibility and security for API traffic

• Mandiant Managed Defense now supports Microsoft Defender for Endpoint

• A Now-Patched Linux Kernel Vulnerability Could Lead To Data Leaks

• The Death Star’s Demise: Can You Trust Your IoT Vendors?

• Critical Patch Out for Month-Old Pulse Secure VPN 0-Day Under Attack

• Experian API Leaked Credit Scores

• Cybersecurity Fosters Competitive Advantage

• (ISC)² publishes revised CISSP educational materials for infosec professionals

• Apple says iOS 14.5.1 and macOS 11.3.1 patch WebKit flaws that may have been actively exploited

• Raspberry Pi Zero W-Powered Password Thief Helps With Penetration Testing

• Application security testing is not just buzzwords

• How to Build and Run a Security Operations Center

• The New Wave of Cybersecurity Awareness Training

• Apple addresses three zero-day flaws in its WebKit browser engine

• Kubestriker: A security auditing tool for Kubernetes clusters

• Israeli companies targeted by Iran Cyber Attacks

• Data Privacy threat to Americans from Biden government

• INTERPOL aims to deal a blow to digital piracy

• Apple Releases Urgent Security Patches For Zero‑Day Bugs Under Active Attacks

• Use longitudinal learning to reduce risky user behavior

• Secure your cloud: Remove the human vulnerabilities

• Priority on people – An argument against the excessive use of Cybersecurity technology

• Financial institutions experiencing jump in new pandemic-related threats

• Users increasingly putting password security best practices into play

• Digital transformation investments a top priority for most CFOs

• Healthcare organizations implementing zero trust to tackle cyberattacks

• Apple Warns of New Zero-Day Attacks on iOS, MacOS

• ISC Stormcast For Tuesday, May 4th, 2021 https://isc.sans.edu/podcastdetail.html?id=7484, (Tue, May 4th)

• Trend Micro unveils OT-native endpoint security solution for ICS environments

• What Are Some Things New iPhone Users Should Know?

• New FluBot Android Banking Trojan Spread Via SMS Phishing

• Red Hat OpenShift features help orgs reduce friction between development and operations teams

• SNP introduces three packaged solutions for moving SAP workloads to the cloud and for S/4HANA

• Apple patches iOS, macOS, iPadOS, watchOS, kitchen-sinkOS bugs said to be exploited in the wild

• Apple Says Epic Games ‘Wants Us to Be Android, But We Don’t Want to Be’

• McAfee partners with Fujitsu to deliver consumer security solutions to FCCL device users

• uCloudlink collaborates with Intercel to provide its mobile broadband devices and data services

• Alert Fatigue: How AI Can Help You Address Your Most Important Alerts

• McAfee Gamer Security offers a 1-year free gamer security to U.S. multi-device security customers

• Ookla and Mapbox partner to create network-aware mapping solutions

• Apple reports 2 iOS 0-days that let hackers compromise fully patched devices

• Yet another Google AI leader has defected to Apple

• An ambitious plan to tackle ransomware faces long odds

• Why Not Turn Airports Into Giant Solar Farms?

• Shlayer Malware Exploited macOS Zero-Day To Bypass Apple Security

• RotaJakiro Linux Backdoor Malware Escaped Detection Since 2018 As It Continued Stealing Data

• Vulnerability In PHP Composer Package Could Allow Supply-Chain Attacks

• Hotbit Crypto Exchange Confirmed It’s Hacked – Customers’ Personal Data Exposed

• Lawmakers look to strengthen whistleblower protections

• Lawfare Live: The Facebook Oversight Board’s Forthcoming Ruling on Trump’s Ban

• Stateless appoints Catherine Allshouse to its board of directors

• OwnBackup hires three cybersecurity experts in Tel Aviv

• COVID-19-Related Bulk Domain Registrations: A Possible Case of DNS Abuse?

• Stupid Is as Stupid Does: XDR Is About the Journey, Not the Destination

• Navy looks to update business systems to improve vessel maintenance

• Scripps Health Cyberattack Causes Widespread Hospital Outages

• Researchers Explore Active Directory Attack Vectors

• Don’t Buy Into Facebook’s Ad-Tracking Pressure on iOS 14.5

• 60% of Organizations had an OWASP Top 10 Attack in the Last Year

• Managing Digital Transformation Risk in the Financial Sector

• Stanford Racism Precipitated “National Policy of Exclusion” and Internment Camps

• From Sky-High to JumpCloud: Making Cloud the Most Secure Environment for Every Business

• Expert released PoC exploit for Microsoft Exchange flaw

• SmileDirectClub says cyber attack could have impact on Q2 results

• IT Security News Daily Summary 2021-05-03

• Hacker leaks 150 million user records from Iranian Raychat app

• DOD seeks clean acquisition data for better policy oversight

• 90% of Vermont’s recent online UI claims flagged as fraudulent

• NIST previews post-quantum cryptography challenges

• DHS, White House turn spotlight on ransomware

• Can zero trust really protect government from cyberattacks?

• New Attacks Slaughter All Spectre Defenses

• Apple Stops Signing iOS 14.4.2 After Releasing iOS 14.5.1 With Fix for Actively Exploited Security Issues

• UK’s Merseyrail Rail Network Suffered Ransomware Attack

• A security flaw in AirDrop found by users

• Phishing attacks imitate Wells Fargo and Chase the most

• Alaska Court System Briefly Forced Offline Amid Cyber Threat

• Facebook Tries To Sell Users On App Tracking

• You Should Update Your iPhone And iPad To iOS 14.5.1 Right Away

• An Ambitious Plan To Tackle Ransomware Faces Long Odds

• Experian API Leaks Most Americans’ Credit Scores

• New Buer Malware Downloader Rewritten In E-Z Rust Language

• Fake Apps: What They Are and How to Spot Them

• Zero Username and Password Authentication

• You should update your iPhone and iPad to iOS 14.5.1 right away

• XDR defined: Giving meaning to extended detection and response

• Hewlett Packard Enterprise Plugs Critical Bug in Edge Platform Tool

• Cybersecurity contingency planning needs a face-lift

• Buer Malware Variant Rewritten in Rust Programming Language

• Imperva to Buy API Security Firm CloudVector

• Name That Edge Toon: Magical May

• Sam Curry Discusses Privacy, Data Ownership, and Business Continuity

• CPDP 2021 – Moderator: Alexandre De Streel ‘Protecting Consumers In The Data Society: It’s The Enforcement, Stupid!’

• Apple Investigating ‘Problem’ With Podcasts App That Began April 29

• SecOps as a Service; The Future of Cybersecurity

• 5 Ways to Reset Your Family’s Digital Habits this Summer

• McAfee Recognised in 2021 Gartner Solution Scorecard Report

• Social Engineering: Watch Out for These Threats Against Cybersecurity Experts

• Deepfake Attacks Are About to Surge, Experts Warn

• Specter of Spectre is Back, in New Micro-Op Cache Vuln

• Pulse Secure fixes zero-day in Pulse Connect Secure (PCS) SSL VPN actively exploited

• Exclusive Deals: Get Nomad’s Legacy Modern Slim Straps for Apple Watch at $29.37 (40% Off)

• Tom Hanks to Star in Sci-Fi Film ‘Finch’ Headed to Apple TV+ Later This Year

• Apple Releases iOS and iPadOS 14.5.1 With Fixes for App Tracking Transparency Bug, WebKit Security Issues

• Apple Releases macOS Big Sur 11.3.1 With Fixes for WebKit Security Issues

• Twitter Opens Spaces to All Users With More Than 600 Followers

• How a Norwegian Government Report Shows the Limits of CFIUS Data Reviews

• The new normal is actually very normal:  Punctuated equilibrium, security cycle theory, and the “New Normal”

• Microsoft Edge To Launch Automatic HTTPS With Edge 92

• Serious XXE Vulnerability In WordPress Allowed Stealing Files – Patch Deployed

• Calendly’s automated meeting scheduler gets new enterprise features

• Pulse Secure Ships Belated Fix for VPN Zero-Day

• US Mulling Domestic Spying Partnership with Private Companies

• Online Child Abuse Platform with 400k Users Taken Down

• Contact Tracer Breach Hits the Keystone State

• Microsoft Finds Critical Code Execution Bugs In IoT, OT Devices

• Vulnerability Summary for the Week of April 26, 2021

• Ivanti Releases Pulse Secure Security Update

• Over 40 Apps With More Than 100 Million Installs Found Leaking AWS Keys

• Trend Micro Announces Next Generation ICS Endpoint Security Solution

• Navigating the Travel Industry with Threat Intelligence

• Epic Games vs. Apple Trial Begins With Opening Remarks Underway

• Cyber Security Roundup for May 2021

• AI security risk assessment using Counterfit

• A week in security (April 26 – May 2)

• How to Make Sure Your Mac’s Software Is Working Smoothly — Intego Mac Podcast, Episode 38

• Ransomware attack on top US Healthcare agencies

• Imperva acquires API security company CloudVector

• New Buer Malware Downloader Rewritten in E-Z Rust Language

• US Agencies Hit By Cyberattack, Confirms CISA Investigation

• Researchers Find Bugs Using Single-Codebase Inconsistencies

• Mini-LED Display Production Improving for Redesigned MacBook Pro Models Later This Year

• How pharma can harness the cloud to transform and accelerate therapeutic development

• Authorities seize world’s biggest dark web child abuse site

• Cryptocurrency Mining Will Void Your SSD Warranty, Manufacturer Galax Warns

• The Edge Pro Tip: Protect IoT Devices

• Stopping the Next SolarWinds Requires Doing Something Different

• Dark Reading Celebrates 15th Anniversary

• Qualys Expands Its Endpoint Security Solution with Real-Time Malware Protection

• Experian API exposed credit scores of tens of millions of Americans

• Most Common Causes of Data Breach and How to Prevent It

• Identifying the Person Behind Bitcoin Fog

• Deals: Save Up to $74 on Apple’s 2020 iPad Air, Including 256GB Wi-Fi for New Low of $675

• Samsung Expected to Supply 120Hz Displays for iPhone 13 Pro Models

• Emotet Cleanup Continues As LEAs Mass Sanitize PCs, Share Victim Emails To HIBP

• Washington DC Police Suffered Ransomware Attack – Attackers Threaten To Leak Data

• Okta completes $6.5B Auth0 acquisition

• These breached “Star Wars”-themed passwords need more than the force to save them

• Cybersecurity M&A Roundup: 30 Deals Announced in April 2021

• App Census Study Reveals that Android Devices Leak User Data Stored in Contact Tracing Applications

• A Rust-based Buer Malware Variant Has Been Spotted in the Wild

• Cisco wins SC Media Award for “Best Security Company”

• 5 Ways Your Software Supply Chain is Out to Get You, Part 5: Hostile Takeover

• Imperva to acquire CloudVector: Prioritizing API Protection for Modern Environments

• Tesla Car Hacked Remotely From Drone via Zero-Click Exploit

• Hackers Target Rogers With a New SMS Phishing Campaign

• Python: Affected by Critical IP Address Validation Vulnerability

• The Anti-Fraud Lifecycle

• NSA Issues Guidance on Securing IT-OT Connectivity

• Naked Security Live – Beware ‘Flubot’: the home delivery scam with a difference

• MITRE ATT&CK v9 is out and includes ATT&CK for Containers

• Chinese Leader Xi Jinping Lays out Plan to Control the Global Internet: Leaked Documents

• NASA Halts Moon Lander Work After Contract Challenge

• Android ‘Exposes’ Covid-19 Contact Tracing Data

• Application Control in the World of Cloud and Shadow IT

• Kuo: iPad Mini 6 Delayed Until Second Half of 2021

• Apple Watch Likely to Gain Blood Pressure, Blood Glucose, and Blood Alcohol Monitoring

• Tips and tactics of today’s cybersecurity threat hunters

• 5 things CISOs want to hear about zero trust at the RSA Conference

• Apple Expects Chip Shortage To Hit iPad, iMac Supply

• Intel Seeking ‘£7bn In Public Subsidies’ For EU Chip Fab

• Social Media Security for Seniors | Avast

• FCW Insider: May 3, 2021

• Biden Administration Drafting EO to Help U.S. Gov’t Secure Digital Supply Chain

• Researchers Uncover Iranian State-Sponsored Ransomware Operation

• 11 Biggest cyber security threats in 2021

• Spam and phishing in Q1 2021

• EU Charges Apple Over App Store ‘Monopoly’

• Action Urged Over Ransomware ‘National Security Threat’

• Australian Man Charged Over Falsifying Covid-19 QR Code

• 4 arrested in takedown of dark web child abuse platform with some half a million users

• New Chinese Malware Targeted Russia’s Largest Nuclear Submarine Designer

• Trying to register your antivirus in Windows Security Center?

• PC Gamers (and Parents of Gamers) Rejoice!

• Facebook, Google, Twitter caution Australia against a blanket terrorism content ban

• How to Solve the Cybersecurity Skills Gap

• Threat Report Portugal: Q1 2021

• Babuk Ransomware attack on NBA Houston Rockets

• UK Boris Johnson mobile number out for public since 15 years raises mobile security concerns

• Hackers Abuses SonicWall Zero-day to Deploy New Ransomware

• Shlayer Strikes Again Through Zero-Day in MacOS 11.3

• DDoS attackers stick to their target even if they are unsuccessful

• Risk-based vulnerability management has produced demonstrable results

• How do I select a DLP solution for my business?

• How organizations can optimize cloud spend

• Cybersecurity control failures listed as top emerging risk

• 6 Steps To Improve Your Data Security and Data Compliance

• 3 Best Practices for Customizing Your Compliance Program

• Kuo: Apple to Launch 8-Inch Foldable iPhone in 2023

• eCommerce fraud losses to surpass $20 billion this year

• 58% of orgs predict remote workers will expose them to data breach risk

• TurgenSec finds 345,000 files from Filipino solicitor-general’s office were breached

• ISC Stormcast For Monday, May 3rd, 2021 https://isc.sans.edu/podcastdetail.html?id=7482, (Mon, May 3rd)

• PCI SSC publishes PCI Secure Software Standard 1.1 and supporting program documentation

• Effort to Protect Consumer Data Privacy Stalls in Florida

• Six things you have to know about ITAR compliance

Generated on 2021-05-04 23:55:30.130278