IT Security News Daily Summary 2022-03-14

• States must expand data sources for strategic flood resilience

• Report: Facebook Has A Problem With Child Predation Groups

• Denso ransomware attack – Pandora gang claims to steal 1.4 TB of data

• Funding for DOD’s software pilots holds strong in 2022

• Legacy vulnerabilities risk critical infrastructure security

• Staff Think Conti Group Is a Legit Employer – Podcast

• A massive DDoS attack hit Israel, government sites went offline

• How Web Applications Are Attacked Through APIs

• FCC seeks comments on internet traffic routing risks

• Mayors judge civic tech pitches at SXSW

• Claim your roadkill with 511 app

• Best YubiKey 2022: Top security keys compared

• CISA Hosts Eighth Cyber Storm Exercise With More than 200 Organizations

• Secureworks Adds Hands-on-Keyboard-Detector to Taegis Platform

• iOS 15.4 Features: Everything New in iOS 15.4

• China thrilled it has captured already-leaked NSA cyber-weapon

• GreyNoise Helps Organizations Defend Against Opportunistic Scan-and-Exploit Attacks in Real Time with Investigate 4.0

• DARKTRACE UPLIFTS SECURITY TEAMS WITH UPDATES TO ITS CYBER AI PLATFORM

• Armorblox Adds DLP to Email Security Platform

• Utility Cybersecurity: Situational Awareness Cuts Risk

• Small tweaks to IT policies, funding in $1.5 trillion funding bill

• 3 Cybersecurity Certainties for 2022

• Is XDR The Right Solution for Today’s Security Threats?

• De-Googling Carey Parker’s (and your) life: Lock and Code S03E06

• Do you know where your software comes from?

• Best YubiKey: You need this cheap security tool

• Cyber insurance war exclusions loom amid Ukraine crisis

• How Cobalt Strike Became a Favorite Tool of Hackers

• iOS 15.4 and watchOS 8.5 Allow You to Restore an Apple Watch Using an iPhone

• A first look at threat intelligence and threat hunting tools

• Four Climate Security Insights From the COVID-19 Pandemic Response

• Putin’s Revised Foreign Agent Law Could Enable Mass Repression

• Phishing Attacks In Ukraine | Avast

• Best YubiKey: Why everyone should have this cheap security tool

• China claims it has captured NSA NOPEN cyber-weapon

• Apple Patch Day: Gaping Security Holes in iOS, macOS, iPadOS

• Embracing Security by Design: Security Isn’t a Pretty Picture

• Apple Begins Selling Refurbished iPhone 12 and iPhone 12 Pro Models

• Cybercrooks’ Political In-Fighting Threatens The West

• Ukraine Reportedly Adopts Clearview AI To Track Russian Invaders

• Russia’s Disinformation Machinery Breaks Down In Wake Of Ukraine Invasion

• EFF Asks Federal Appellate Court to Re-hear Important Patent Transparency Case

• The difficulty of scaling a Frankencloud

• Cryptocoin ATMs ruled illegal – “Shut down at once”, says regulator

• Canada Cops Arrests Teen Cyber-Attack Suspect

• Mobile Threats Skyrocket

• Catching the Evasive REvil Ransomware Gang With AI

• New Bipartisan Bill Would Require Firms to Report Cyber Incidents Within 72 hours

• YARA “dotnet” module now available for Livehunt and Retrohunt

• Cyber Attacks on Government Organizations beyond Ukraine Surge by 21%

• Using the Sherlock Holmes method for cyber defense

• Leaks reveal the surprisingly mundane reality of working for a ransomware gang

• Hit by ransomware or paid a ransom? Now some companies will have to tell the government

• Apple Releases tvOS 15.4 With Support for Captive WiFi Networks

• Apple Releases HomePod Software 15.4

• Apple Releases watchOS 8.5 With Support for Apple TV Purchase Authorization, Irregular Heart Rhythm Notification Improvements and More

• Apple Releases macOS Monterey 12.3 With Universal Control, Spatial Audio Dynamic Head Tracking on M1 Macs and More

• Apple Releases iOS 15.4 and iPadOS 15.4 With Face ID Mask Unlock, New Emoji, Universal Control, and More

• How Arctic Wolf aims to ‘unify the cybersecurity market’

• Viasat, Rosneft hit by cyberattacks as Ukraine war spills online

• UK Unveils New Cyber Flashing Law

• Multilingual Cybersecurity Awareness Training adapted for your needs

• Why client-side web application security is critical to protecting from Magecart and other similar attacks

• Car Parts Giant Denso Targeted by Ransomware Group

• Exclusive: iboss Issues School District Cybersecurity Warning

• Deals: Satechi Offering 25% Off Sitewide for Pi Day

• Secure your healthcare devices with Microsoft Defender for IoT and HCL’s CARE

• eXecutive Security: ThreatX Launches New Podcast on March 15

• Top 12 client-side security threats

• PKI Solutions Introduces PKI Spotlight Monitoring and Alerting Solution

• Ukraine Using Clearview AI Facial Recognition Tech to Monitor ‘People of Interest’

• GreyNoise launches free tool to protect against ‘scary’ vulnerabilities like Log4j

• Smart devices spy on you – 2 computer scientists explain how the Internet of Things can violate your privacy

• RiskOps platform Feedzai grows +40% year-over-year

• Anonymous Rises Again Amid Russia Ukraine War

• Tencent ‘Facing Record Fine’ Over Payment Violations

• 10 Common Security Mistakes Sysadmins Make & How To Avoid These Pitfalls>

• Critical Vulnerabilities Patched in Veeam Data Backup Solution

• Deals: Fourth Gen iPad Air Discounted by $99, Starting at $499.99 for 64GB

• Benchmark Results Confirm Apple Hasn’t Downclocked M1 Chip in New iPad Air

• Apple Suppliers Hit By Fresh China Covid-19 Restrictions

• Ukraine is using Clearview AI’s facial recognition during the conflict

• Upcoming Speaking Events

• Ukraine’s “IT Army” Struck with Info-stealing Malware

• CVE-2022-0847 aka Dirty Pipe vulnerability in Linux kernel

• iPhone SE Reviews: Impressive Performance in a ‘Tired Design’

• Deals: Take $200 Off 2021 MacBook Pro Models in Amazon’s New Sale

• Report Highlights How Top Apple Executives Disagreed Over How Far iOS Anti-Tracking Measures Should Go

• Here’s When You Can Download iOS 15.4, iPadOS 15.4, and macOS Monterey 12.3 With Universal Control

• 93% of Organizations Have Network Vulnerabilities: Here’s How to Beat the Odds

• Cybercrooks’ Political In-Fighting Threatens the West

• Does the Free World Need a Global Cyber Alliance?

• Hackers Target German Branch of Russian Oil Giant Rosneft

• Governments Should Decide Who Gets to Buy Spyware

• Bridgestone USA Alleges to be Infiltrated by a LockBit Ransomware Cell

• Helping Mom & Dad: Online Doctor Visits and Telemedicine

• Ubisoft Resets Employee Passwords Following Cyberattack

• Why Enterprise Threat Mitigation Requires Automated, Single-Purpose Tools

• Gaming Company Ubisoft Confirms It was Hacked, Resets Staff Passwords

• What D’Hack Is DPoP?

• Ransomware Gang Threatens to Leak Files Stolen From Tire Giant Bridgestone

• AMD Updates Spectre Mitigations Following Intel Research

• Russian Ransomware Gang Retool Custom Hacking Tools of Other APT Groups

• Anonymous claims to have hacked German subsidiary of Russian energy giant Rosneft

• Duo Single Sign-On Now Supports Multiple Active Directory Forests

• 10 Most Expensive Gaming Mouse 2022 – Wireless & Wired

• New US law: Cyberattacks to be reported within 72 hours

• Meta Releases Open-Source Browser Extension for Checking Code Authenticity

• 3 Ways the Cybercriminals Getcha & How to Be Prepared

• Ford Expands Electric Vehicle Deal With Volkswagen

• Tesla, SpaceX Face ‘Significant’ Inflation Pressure, Musk Says

• Penetration Testing Azure: The User-Friendly Guide

• Report: 25% of mobile endpoints have faced malicious apps

• Over 500,000 Patients Hit by Data Breaches at Healthcare Firms in Alabama, Colorado

• UK Ferry Service Wightlink Admitted Data Breach

• Ubisoft reveals ‘security incident’ forcing company-wide password refresh

• Ukraine reportedly adopts Clearview AI to track Russian invaders

• Automotive giant Denso confirms hack, Pandora ransomware group takes credit

• The VC View: Incident Response and SOC Evolution

• 10 Best 32-Inch Monitors 2022 – Experience Gaming on Ultra Wide Screen

• SCA Rules Come into Force Today for E-commerce Transactions

• New Linux Bug in Netfilter Firewall Module Lets Attackers Gain Root Access

• Leak of Russian Censorship Data

• iPhone SE 5G Pre-Order Delivery Times Slip into Late March

• CISA list of 95 new known exploited vulnerabilities raises questions

• Brit techie shows us life in Ukraine amid Russian invasion

• Meta Bars Calls For Death Of Head Of State In Policy Shift

• Cloud vs. “Traditional” IT Compliance

• Critical Infrastructure Threat as Ransomware Groups Target ‘Enemies of Russia’

• On New Sec 4 Day Rule To Report Cyberattacks

• Malware hidden in fake Valorant aim-bot

• Ubisoft Was the Victim of a Cyber Security Incident

• Bogus Valorant Cheat Lures on YouTube Infect Users with RedLine Stealer Malware

• A week in security (March 7 – March 13)

• Australian electric grid vulnerable to Cyber Attacks via Solar Panels

• UK Regulator Warns Against ‘Illegal’ Crypto Cash Machines

• The Silicon UK In Focus Podcast: Beyond Productivity

• Legal Practice Fined £100k After Hacker Stole Court Info

• FCA: Crypto ATMs Are Illegal in the UK

• Brazilian trojan impacting Portuguese users and using the same capabilities seen in other Latin American threats

• Webinar on cyberattacks in Ukraine – summary and Q&A

• UK announces digital identity security legislation

• Is low-code safe and secure?

• Ukraine’s “IT Army” hit with info-stealing malware

• Russia Shuts Down Instagram Due To ‘Calls For Violence’

• Researchers Find New Evidence Linking Kwampirs Malware to Shamoon APT Hackers

• Apple Supplier Foxconn Forced to Suspend Operations in Shenzhen Due to Lockdown

• SSL Certificates and PKI Management For Better Your Web Security

• Trying to register your antivirus in Windows Security Center?

• Hackers Using Cheat Lures to Distribute Powerful Information Stealer Malware

• Russia-Ukraine cyber conflict poses critical infrastructure at risk

• Human Factors: Why Technology Alone Will Never Equal Cyber Secure

• Building trust in a zero-trust environment

• How to contain a privileged access breach and make sure it doesn’t happen again

• China: attacks from US IP addresses hit us, moved on to Russia and Ukraine

• Women in cybersecurity: How far have they come?

• Russia labels Meta an ‘extremist’ organization, bans Instagram

• The importance of building in security during software development

• Model contract language for medical technology cybersecurity published

• Poor data sanitization practices put public sector data at risk

• Taiwan rounds up 60 Chinese tech workers on suspicion of poaching tech and people

• Data and the cyber workforce

• Cloud computing market to reach $1,554.94 billion by 2030

• Consilio strengthens cybersecurity offerings with Complete Connector and Sightline 8.0

• IT leadership appointments: Axonius, Codenotary, CyberSaint, Intelsat, and NetAbstraction

• Texas SB 820 Advances K-12 Cybersecurity Despite Limitations

• Healthcare Providers Need to Increase Budgets for Cybersecurity

• MariaDB Xpand 6 improves performance of operational analytics

• Aura unveils Smart Network feature to protect users against zero-day threats

• IT Security News Weekly Summary – Week 10

• IT Security News Daily Summary 2022-03-13

• Five Tips for Ensuring Communications Security in Your Organization

• Q&A on Network Detection and Response (NDR)

• The Cybersecurity Job Shortage Won’t Continue to Decline without Enhanced Hiring Creativity

• The Foilies 2022

• Multiple Security Bugs Identified in Software Package Managers

• The Era of Ransomware: How to Respond in a Crisis

• Kuo: Only iPhone 14 Pro Models to Get ‘A16’ Chip, Standard Models to Retain A15

• Anonymous sent a message to Russians: “remove Putin”

• Is Europe Prepared for a Proxy War With Russia?

• Filter Blocked 70,000 Emails to Indiana Lawmakers on Bill

• The hidden C2: Lampion trojan release 212 is on the rise and using a C2 server for two years

• Mar 06- Mar 12 Ukraine – Russia the silent cyber conflict

• Corporate Website Contact Forms Used in BazarBackDoor Malware Campaign

• Misconfigured Keys are Tackled in ServiceNow’s Guidelines

• Wightlink Customers’ Details Compromised in Cyber Attack

• Security Affairs newsletter Round 357 by Pierluigi Paganini

• Russia Banned Instagram After Blocking Facebook and Twitter

• LockBit ransomware group claims to have hacked Bridgestone Americas

• UK Network Operators Target iCloud Private Relay in Complaint to Regulator

• Week in review: Linux bug gives root access to attackers, UPS devices’ vulns, IoT security for OEMs

• Penetration testing

• Kali Unkaputtbar – A new Boot Menu to Boot Directly into Snapshots

• Mavenir collaborates with Crexendo to provide business communications offerings for organizations

• Anonymous sent 7 million texts to Russians plus hacked 400 of their security cams

Generated on 2022-03-14 23:55:22.271174