IT Security News Daily Summary 2021-12-19

• Grim Finance hacked – $30 million worth of tokens stolen

• Ransomware Persists Even as High-Profile Attacks Have Slowed

• Clop ransomware gang is leaking confidential data from the UK police

• Overcoming 5 Challenges to Shifting AppSec Left

• CVE-2021-44228: Log4j2 Exploitability and Attack Path Mitigation

• Blurry Ideologies and Strange Coalitions: The Evolving Landscape of Domestic Extremism

• Finding a way out of the dead-end cyber wars

• Security Affairs newsletter Round 345

• TellYouThePass ransomware resurges and exploits Log4Shell in recent attacks

• Facebook Crowned ‘Worst Company of 2021’ by New Survey

• Facebook Crowned ‘Worst Company of 2021’ By New Survey

• Chinese Hackers Spotted Targeting Transportation Sector

• API Security Beginner’s Guide

• Singapore holds emergency meetings with CII sectors over Log4j

• Week in review: Log4Shell updates, Kronos ransomware attack, unused identities threat

• Penetration testing

• Tunnelling For Offensive Security

• HSBC partners with IBM to improve security for transactions between banks

• Apptio collaborates with Microsoft to deliver insights and business management applications for IT

• IT Security News Daily Summary 2021-12-18

• Reasons to go looking in the Registry

• StayHackFree – Don’t Be Barry

• It’s About Time: The Unappreciated Fundamental Metric for Security

• German audio tech giant Sennheiser exposed 55GB of customers’ data

• Western Digital customers have to update their My Cloud devices to latest firmware version

• Visualize Attack Paths in Production Environments With ThreatMapper

• The Greatest Asset Becomes the Biggest Risk

• Apache releases new 2.17.0 patch for Log4j to solve denial of service vulnerability

• 2022 Trends In The Convergence Of Cyber And Physical Security

• Vital Tips & Resources to Improve Your Internet Safety

• So, Your Kids Have Left School. Do You Still Need To Worry About Their Online Safety?

• Report: IT security teams struggle to mitigate vulnerabilities

• CCSP vs. Google Cloud Certified-Professional Cloud Security Engineer: Which Shows Broader Mastery in Cloud Security?

• 5 Endpoint security tips for the holidays

• Rising volume of email fatigue opens doors for Cybercriminals

• Hardening Your Kubernetes Cluster: Guidelines (Part 2)

• Conti Ransomware Group Exploiting Log4j Vulnerability

• Apache releases the third patch to address a new Log4j flaw

• What Log4Shell teaches us about open source security

• Log4j: Everything You Need to Know>

• Buckle Up for More Log4j Madness

• Top Stories: What’s New in iOS 15.2, Universal Control Delayed, and More

• Lenovo Laptop Flaws Let Attackers Gain Admin Privileges

• New Local Attack Vector Expands the Attack Surface of Log4j Vulnerability

• US distrust of Huawei linked in part to malicious software update in 2012

• Apache Issues 3rd Patch to Fix New High-Severity Log4j Vulnerability

• 1.8 Million customers of four sports gear sites impacted by credit cards breach

• Apple’s AR/VR Headset Could Be Less Than a Year Away

• Build or Buy your own antivirus product

• Log4Shell Vulnerability Risks for OT Environments — and How You Can Better Protect Against Them

• Top Books to Prepare You for CISSP Exam

• 5 holiday Cybersecurity tips retailers need this year

• Why authorization and authentication are important to API security – and why they’re not enough

• How your business can benefit from Cybersecurity automation

• Cybersecurity in 2022, Predictions for digital ecosystem facing more challenges and sophisticated threats

• Neuberger: Change Your Passwords Now

• The State of Security in the UK: Lessons from the NCSC Report

• Apache Log4j Vulnerability

• Log4j vulnerability opened the door to the ransomware operators

• SANBlaze SBExpress-RM5 delivers latest-generation validation and compliance testing

• Best cybersecurity schools and programs

• BehavioSec announces partnership with leading enterprise technology providers

• Week in security with Tony Anscombe

• Are Endpoints at Risk for Log4Shell Attacks?

• HITRUST i1 Assessment addresses information security risks and emerging cyber threats

Generated on 2021-12-19 23:55:14.878636