IT Security News Weekly Summary – Week 23

• IT Security News Daily Summary 2021-06-13

• Frequent run-ins with Indian government complicates tech giants’ plans

• BackdoorDiplomacy APT targets diplomats from Africa and the Middle East

• Security BSides Dublin 2021 – Rob Slade’s ‘Homomorphic Encryption’

• The Joy of Tech® ‘Jeff Bezos In Space’

• Security BSides Dublin 2021 – Jayme Hancock’s ‘Weaponizing Systems Administration: Leveraging IT Skills In Penetration Testing’

• Apple Stores to Drop Mask Requirement for Vaccinated Customers This Week

• NATO won’t ‘mirror what Russia does,’ Secretary General Stoltenberg says amid worsening tensions

• Avaddon Ransomware Shut Down, Releases 2900+ Decryption Keys

• A Sea Change in Counterterrorism

• GitHub Releases Key Findings of an Easy-to-Exploit Linux flaw

• APWG: Phishing maintained near-record levels in the first quarter of 2021

• Bitcoin just got its first makeover in four years

• Why some cyber criminals are ditching bitcoin for a cryptocurrency called monero

• Objectives for Ransomware Attack Against Nuclear Contractor Sol Oriens Remain Unknown

• Security Affairs newsletter Round 318

• US Dept. Of Justice Shut Down Slilpp Cybercrime Marketplace

• CD Projekt Red Confirmed that its Data is Disseminated Online

• All the New Privacy Features Coming to iOS and macOS

• Let the Children’s Day be a Reminder to Make the Internet Safe for All

• What Can Go Wrong With an IT Disaster Recovery Plan?

• What is the Future of Cybersecurity? Depth Cyber Space Analysis

• Emails and Passwords of Government Officials Exposed due to Data Breaches

• Week in review: Microsoft Teams risks, open-source dependencies, DNS’s role in network security

• U.S. Authorities Take Down The largest underground Marketplace “Slilpp” That Offers 80 Million Stolen Credentials

• Multilingual Cybersecurity Awareness Training adapted for your needs

• Penetration testing

• Update: mac-robber.py, (Sun, Jun 13th)

• The white hat hacker has estimated the probability of a hacker attack on the websites of Internet giants

• Cyborg Security’s capabilities combat attacks on critical infrastructure and supply chains

• Snowpark enables AtScale to execute complex analytical functions within the Snowflake Data Cloud

• Honeycomb Metrics bridges the gap between traditional debugging practices and modern systems

• Adrian Szwarcburg joins DigitSec as SVP of business development

• How To Drive Value with Security Data – The Full Talk

• iOS 15 Lets You Drag and Drop Images and Text Across Apps

• IT Security News Daily Summary 2021-06-12

• Bitcoin just got its first makeover in four years, which will help it compete with Ethereum

• Apple Makes New On-Screen Game Controller Available to Developers on iOS 15 and iPadOS 15

• Security BSides Dublin 2021 – Caitlin Long’s ‘Hacking The Planet: An Intro To Avionics Security’

• XKCD ‘Product Launch’

• Fortinet Targeted for Unpatched SSL VPN Discovery Activity, (Sat, Jun 12th)

• Endpoint security is a double-edge sword: protected systems can still be breached

• 7 Years Old Critical Linux Privilege Escalation Bug Let Hackers Gain Root Access

• McDonald’s discloses data breach in US, Taiwan and South Korea

• A Digital Journey: A Long and Winding Road

• Security BSides Dublin 2021 – Lindsay Kaye’s ‘Egregor Awakens: Taking A Tour Of A Threat Actor’s New Digs’

• Expert: Facebook Users Should Have The Power To Decide Who Is Banned

• South Korea And Taiwan: McDonald Hit by a Data Breach

• 3.2 Million PCs Compromised in a Malware Campaign

• Security News In Review: REvil Attacks Nuclear Contractor Sol Oriens

• Google Won’t Kill the URL After All

• Volkswagen discloses data breach, 3.3 million customers impacted

• Apple Promotes iPad Pro in New Ad With ‘The Little Mermaid’ Musical Spin

• Craig Federighi and Greg Joswiak Discuss iPadOS 15, macOS Monterey, Privacy, Shortcuts on Mac, and More

• Top Stories: WWDC Recap With iOS 15, macOS Monterey, and More

• Game giant Electronic Arts is the latest victim of massive data breach

• Iranian Hackers Attacked Websites of an African Bank and US Federal Library

• What You Should Know About Voilá, the Latest Viral Selfie App

• CVE-2021-3560 flaw in polkit auth system service affects most of Linux distros

• Top 5 Growth Hacking Strategies for Small Startups

• iVerify (version 17)

• This app teaches you how to make your iPhone secure

• Apple Reaffirms Privacy Stance Amid Trump Probe Revelations

• As Ransomware Demands Boom, Insurance Keeps Paying Out

• EA Sports Hacked – Hackers Stolen Source Code With 780 GB of Data

• ‘Build’ or ‘Buy’ your own antivirus product

• Linux System Service Bug Allows You to Gain Root Access

• Endpoint, el nuevo perímetro

• Avaddon ransomware group closes shop, sends all 2,934 decryption keys to BleepingComputer

• Arctic Wolf Service Assurance helps organizations end cyber risk

• Cybersecurity News Round-Up: Week of June 7, 2021

• IonQ integrates with Cirq, an open-source quantum computing framework from Google

• Nutanix and HPE expand partnership to accelerate hybrid cloud and multicloud adoption

• Tracking ransomware cryptocurrency payments: What now for Bitcoin?

• Week in security with Tony Anscombe

• Sherweb partners with LogMeIn to offer password management solution to its partners

• Checkmarx names Roman Tuma as CRO

• Avaddon ransomware gang shuts down their operations and releases decryption keys

• Internet Threats Go Viral – Companies Must React to Keep Brands Secure

• macOS Monterey Features Dedicated Password Section in System Preferences, Built-In Authenticator and More

• The ACCESS ACT Takes a Step Towards a More Interoperable Future

• IT Security News Daily Summary 2021-06-11

• The Executive Order – Improving the Nation’s Cyber Security

• Unpatched Bugs Found Lurking in Provisioning Platform Used with Cisco UC

• McDonald’s suffers cyberattack in US, South Korea and Taiwan

• Trickbot Investigation Shows Details of Massive Cybercrime Effort

• Executive Order Signed By President Biden

• McDonald’s Data Breach Exposed Business & Customer Data

• Next iPad Mini Will Allegedly Feature Thinner Bezels, USB-C Port, and Touch ID Power Button

• 1000 Californians Have Asked Their Representatives To Fix Our Broken Broadband System. Have You?

• Colonial Pipeline Disrupted By Single Password | Avast

• Top 5 benefits of a new cybersecurity market model

• U.S. Lawmakers Introduce Antitrust Legislation That Could Significantly Impact Apple and Other Tech Companies

• The hacker group that went after one of Apple’s suppliers found a new victim

• Volkswagen America Discloses Data Breach Impacting 3.3 Million

• CEO-Level Guide to Prevent Data Hacking Technologies & Incidents

• Reclaim Your Online Privacy | Avast

• Air Force wants $800 million for enterprise IT as a service

• Apple will finally give iPhone and iPad users an important choice to make

• The pros and cons of Palo Alto Networks’ SASE platform

• Maps in macOS Monterey: Interactive Globe, Detailed Terrain, 3D Landmarks, Updated Driving Features and More

• REvil Hits US Nuclear Weapons Contractor: Report

• Baby Clothes Giant Carter’s Leaks 410K Customer Records

• The Joy of Tech® ‘WWDC Schadenfreude!’

• Cyber Resilience and Its Importance for Your Business

• Security BSides Dublin 2021 – Peter Morin’s ‘Fight The Fight – Orchestrating And Automating Your Incident Response’

• Apple Asks Developers Whether They Would Attend In-Person WWDC Following Two Years of Digital Format

• Fallout of EA source code breach could be severe, cybersecurity experts say

• Wray: FBI Frowns on Ransomware Payments Despite Recent Trend

• Securolytics COO charged in Georgia hospital cyber attack

• Italy announced its Cybersecurity Agency

• Adobe Removing ‘Photoshop Mix’ and ‘Photoshop Fix’ From App Store on June 21

• MacRumors Giveaway: Win a Magnetic iPad Stand From Lululook

• DOJ charges cybersecurity official for attack on Georgia hospital

• Father’s Day Deals: Save on Apple Accessories From Nomad, Hyper, Mophie, and More

• macOS Monterey Tidbits: Animated Memoji on Login Screen, Change the Color of the Mouse Pointer, and More

• Biden Issues Executive Orders on Chinese Companies and Apps

• Fighting Insider Abuse After Van Buren

• Cyberpunk 2077 Hacked Data Circulating Online

• The FBI’s Anom Stunt Rattles the Encryption Debate

• Security BSides Dublin 2021 – Chris Lyne’s ‘A Glance At Interpreted Language Bytecode Trickery’

• UK tells UN that nation-states should retaliate against cyber badness with no warning

• C3.ai Digital Transformation Institute Announces AI for Energy and Climate Security Grantees

• Make New Connections with (ISC)² Community

• BrandPost: Announcing HP Wolf Security, and a New Report Assessing Remote Working Cyber Risks

• Biden’s OPM nominee appears headed for confirmation

• Recorded Future Unveils $20M Threat-Intel Investment Fund

• ALPACA – the wacky TLS security vulnerability with a funky name

• Details Emerge on How Gaming Giant EA Was Hacked

• Apple’s Flagship Tower Theatre Store Opening in Los Angeles on June 24

• How to deactivate or delete your Facebook account

• Cyber Attack news trending on Google

• BrandPost: Nation States, Cyberconflict, and the Web of Profit.

• Cisco Talos: Exchange Server flaws accounted for 35% of attacks

• Landmines are Banned. Should Drones be Classified as Airmines?

• Ransomware will cost its victims more around $265 billion (USD) annually by 2031, Cybersecurity Ventures predicts

• Cloud vs on premise: 3 reasons the Cloud is winning

• COO of Security Company Charged for Cyberattack on Medical Center

• Report: Most Online Sex Trafficking Recruitment Cases Occur On Facebook

• China-Based Hackers Luring Indians into Fake Tata Motors Scam

• With Significant Increase In High-Profile Cyberattacks, SecZetta Shares Insight on How Organizations Can Mount Better Offense

• Sonicwall SRA 4600 Targeted By an Old Vulnerability, (Fri, Jun 11th)

• Video: Top 5 Most Useful Features in iPadOS 15

• Ransomware Attack Hits Foodservice Distributor Edward Don

• Watch Out! Emerging Malware is Skulking in Steam Profile Pictures

• How to speed up deep learning model training in the automotive sector

• Amazon Web Services To Build Data Centre In Israel

• Top 10 Linux Server Hardening and Security Best Practices

• Web Filtering Appliance for Battling Spam

• RSA Spins Out Fraud and Risk Intelligence Unit as Standalone Company Outseer

• Many Mobile Apps Intentionally Using Insecure Connections for Sending Data

• MacBooks Running Windows Gain Improved Trackpad Support With Boot Camp Update

• Billions of Passwords Leaked Online

• How Collaboration Happens at Duo

• Educating the Educators: Protecting Student Data

• Lax security around URL shortener exposed PII of US retailer Carter’s customer base

• Monumental Supply-Chain Attack on Airlines Traced to State Actor

• McDonald’s Says Hackers Breached Data in Taiwan, South Korea

• Secure Access Trade-offs for DevSecOps Teams

• US Retailer Carter Leaks PII With URL Shortener

• McDonald’s Operations In South Korea And Taiwan Hit By Data Breach

• STEM Audio Table Rife With Business Threatening Bugs

• How Hackers Used Slack To Break Into EA Games

• macOS Monterey to Offer Smoother Gameplay With Support for Adaptive-Sync Displays on Newer Macs

• Check Point Software Announces Integration of CloudGuard Network Security with Equinix Network Edge

• Five arrested over brazen Paris bank heist

• Inadvertently Exposed Secrets and Tokens are promptly Scanned by GitHub

• Deals: Take $49 Off Apple’s M1 iMac With New All-Time Low Prices

• McDonald’s says some systems in Asia were hit by data breach

• GitHub Discloses Details of Easy-to-Exploit Linux Vulnerability

• Russian hackers attacked the systems of the Dutch police during the investigation of the Boeing crash

• A Mystery Malware Stole 26 Million Passwords From Windows PCs

• Mozilla Says Google’s New Ad Tech—FLoC—Doesn’t Protect User Privacy

• The U.S. Needs a New Licensing Policy for Chinese Companies

• The GDPR, Privacy and Monopoly

• Apple should fix this privacy issue, not try to keep it quiet

• Police Grab Slilpp, Biggest Stolen-Logins Market

• Canada Privacy Watchdog Slams Police Use of Facial Recognition Tool

• FBI Alerts: BEC Scammers are Posing as Construction Companies

• Deloitte Acquires CloudQuest to Gain CSPM Platform

• EA’s Source: It’s in the Game (and in Hackers’ Hands)

• JBS USA Paid $11 Million to Hackers for The REvil Ransomware Attack

• Everyone Wants to Build a Cyber Range: Should You? Part 2

• U.S. Authorities Shut Down Slilpp, the Largest Marketplace for Stolen Logins

• Hackers Can Use Pre-installed Samsung Apps to Spy on Users

• Kubeflow: The Target of Cryptomining Attacks

• Mysterious custom malware used to steal 1.2TB of data from million PCs

• iOS 15: Check Out Safari’s New Tab Bar, Tab Groups, and Tab Switcher

• CD Projekt Data Breach: Ransomware Attack Makes Internal Data Public

• Hackers Are Tampering with Pre-Installed Apps to Spy on Samsung Users

• How to Conduct a Cloud Security Audit: A 5-Step Checklist

• EA Games looted by intruders: Publisher says ‘no player data accessed’ after reported theft of FIFA 21, Frostbite source

• Useful Ways To Increase Your Security And Safety While Driving

• Best ways to block cyberattacks in your business

• Microsoft Announce Powerful New Threat Detection Solution in Azure

• New DDoS extortion attacks detected as Fancy Lazarus group returns

• Russia Fines Facebook $235,000 Over ‘Illegal Content’

• Hackers Steal FIFA 21 Source Code, Tools in EA Breach

• Alibaba’s Lazada Launches Public Bug Bounty Program

• FBI/AFP-Run Encrypted Phone

• Nefilim Ransomware: Everything You Need to Know

• U.S. Gets Hit by More Than 7 Ransomware Attacks an Hour

• Cox Media Group hit by Major Cyberattack Last Week

• Gaming Giant EA Confirms Breach, Theft of Source Code

• iOS 15 Reminders Gains New ‘Smart List’ Feature for Easily Filtering Reminders Based on Locations, Tags, and More

• Why Freelancers Should Prioritise Cybersecurity

• Gaming Giant Electronic Arts Got Breached

• Robert Hormats on China’s crypto crackdown, national security concerns over TikTok, WeChat

• Italy Sets Up Cybersecurity Agency After Russia Warnings

• Apple Working on Redesigned iCloud Mail for Web

• Hackers Steal Wealth of Data from Game Giant EA

• One Identity Strengthens Executive Team

• Cybersecurity Tips for Business Travelers: Best Practices for 2021

• Complexity is the biggest threat to cloud success and security

• Authorities Take Down Stolen Login Credentials Marketplace Slilpp

• Al Jazeera detected and blocked disruptive cyberattacks

• The Largest Marketplace for Stolen Logins Slilpp Disrupted by International Law Enforcement

• FBI sold phones to organized crime and read 27 million “encrypted” messages

• What Really Happened When Google Ousted Timnit Gebru

• This Could Be The Largest Password Leak Of All Time

• Multiple Office 365 security bugs could give hackers the keys to the kingdom

• Security researcher says attacks on Russian government have Chinese fingerprints — and typos, too

• EA Games Hacked, Source Code Stolen

• The CSO guide to top security conferences, 2021

• FCW Insider: June 11, 2021

• Card Broken: 1000 arrests made in Chinese crackdown on fraud, cryptocurrency laundering

• Hackers Can Exploit Samsung Pre-Installed Apps to Spy On Users

• Apple Registers iPhone 13 Models in Eurasia Ahead of September Launch

• Researchers Create Un-hackable Quantum Network, Expert Weighs In

• How to hack a smart car – with sticky tape

• AWS IAM Vs Azure: Which Is More Secure?

• DoJ announced to have shut down Slilpp marketplace in international operation

• iOS 15’s Live Text Feature Lets You Digitize Written Notes, Call a Number on a Sign, Translate a Menu, and Much More

• Weekly Update 247

• Live Cybersecurity Webinar — Deconstructing Cobalt Strike

• The case for SaaS data backup and ownership

• Feds strike Slilpp, a marketplace for flogging initial access credentials

• Iranian Hackers Compromise Websites of an African Bank and a US Federal Library

• 7-Year-Old Polkit Flaw Lets Unprivileged Linux Users Gain Root Access

• Ask Chloé: Personal Burnout

• Canadian Cyberattacks in 2020: Most Organizations in Canada Affected

• Want your endpoint security product in the ‘Microsoft Consumer Antivirus Providers for Windows’ ?

• Foodservice Supplier Edward Don Hit by a Ransomware Cyberattack

• EA Gaming Giant Hacked and Source Code Stolen

• 5 Steps to Effective CUI Classification

• Seven-year-old make-me-root bug in Linux service polkit patched

• New Cyber Espionage Group Targeting Ministries of Foreign Affairs

• Facebook Messenger Gains Quick Reply Bar, Payment Links, and New Themes

• 15 Ways To Secure Your Business WiFi Network

• Organizations Leveraging Microsoft Teams at Risk

• Can the Government Compel You To Produce Records That Don’t Exist Yet?

• Keeping an Eye on Dangerous Python Modules, (Fri, Jun 11th)

• Apple TV+ Renews ‘See’ For Third Season Ahead of Season Two Premiere on August 27

• New infosec products of the week: June 11, 2021

• Seven-year-old make-me-root bug in Linux kernel patched

• More than 26m user passwords stolen from Amazon, Apple, and Facebook

• Google uses AI to develop Silicon Processors under 6 hours

• API Security Weekly: Issue #137

• Quantum computing is imminent, and enterprises need crypto agility now

• China arrests over 1000 for using cryptocurrency to help launder proceeds of phone scams

• The future of FISA

• Intrusion Detection System (IDS) and Its Detailed Working Function – SOC/SIEM

• U.S. Authorities Shut Down Slilpp—Largest Marketplace for Stolen Logins

• Software Security Testing – Hidden Thoughts Can Cost You

• CISSPs From Around the Globe: An Interview with Laurie Mack

• DDoS attacks increase 341% amid pandemic

• Digital criminals turn toward vaccines to capitalize on COVID-19

• One step closer to quantum-secure conference calls

• ISC Stormcast For Friday, June 11th, 2021 https://isc.sans.edu/podcastdetail.html?id=7538, (Fri, Jun 11th)

• Biometrics for banking and financial services market to reach $8.9 billion by 2026

• Gigamon ThreatINSIGHT Guided-SaaS NDR improves SOC and incident response effectiveness

• China passes new laws to hit back at foreign sanctions

• Google ends push for Chrome address bar to only show domain name

• How Attackers Exploit Active Directory: Lessons Learned from High-Profile Breaches

• Approov 2.7 delivers API cybersecurity protection for mobile-based applications

• Protegrity Data Protection Platform introduces dynamic data masking and monitoring capabilities

• Trump Administration Subpoenaed Apple for Data on Two House Intelligence Committee Democrats

• Acronis Cyber Protect Cloud’s protection pack blocks email-borne threats

• AWS Proton: Fully managed application delivery service for containers and serverless

• Bayshore Networks expands its Security Gateway portfolio with the release of NetWall 10GB USG

• Everbridge and WizNucleus partner to increase digital and physical security for the energy industry

• VMware and Vapor IO build a Multi-Cloud Services Grid to simplify the delivery of distributed 5G systems

• Victory! Dartmouth Ends Unfounded Cheating Investigation After Students, Rights Groups Speak Out

• What You Need to Know About SOX Compliance

• BackdoorDiplomacy: Upgrading from Quarian to Turian

• Google fixes actively exploited Chrome zero‑day

• Hackers Stole a Ton of EA Data—Including Valuable Source Code

• RSA introduces Outseer, a spinout of its Fraud & Risk Intelligence unit

• nVent acquires CIS Global to strengthen global offering in data centers and networking solutions

• FBI Director Christopher Wray sends dire warning about ransomware threats

• Hackers selling access to FIFA matchmaking servers and other games after EA attack

• Attackers Leverage SonicWall VPN Flaw to Compromise SRA Appliances

• New Ransomware Group Claiming Connection to REvil Gang Surfaces

• Empower Developers and Reduce Costs with SDKs

• AutoRABIT raises $14.5M to accelerate go-to-market and product development

• Healthcare Device Security Firm COO Charged with Hacking Medical Center

• ‘Fancy Lazarus’ Criminal Group Launches DDoS Extortion Campaign

• Using Citrix Workspace companies can build and maintain effective hybrid work environments

• Big Data Profits If We Deregulate HIPAA

• ZeuS, Still Alive and Kicking in the Form of Jabber ZeuS?

• Biden’s pick to lead GSA: ‘We can’t implement government policy if we can’t get the damn websites to work’

• ‘Fancy Lazarus’ Cyberattackers Ramp up Ransom DDoS Efforts

• JBS CEO Says Company Paid $11M in Ransom

• IT Security News Daily Summary 2021-06-10

• Global Scamdemic: Scams Become Number One Online Crime

• Father’s Day Apple Pay Promo Offers Adidas Discount

• 2021 Apple Design Award Winners Include CARROT Weather, Genshin Impact, Bird Alone, Little Orpheus and More

• Twitter is the (Very Short Term) Winner of the Trump Oversight Board Saga

• Dept. of Energy subcontractor confirms it was hacked in May

• Chrome Browser Bug Under Active Attack

• CISOs: It’s time to get back to security basics

• JBS USA paid $11M ransom to REvil hackers

• Apple Aiming to Eliminate Passwords With Face ID/Touch ID Passkeys

• Tracking Global Online Censorship: What EFF Is Doing Next

• 15 Universities Have Formed A Company That Looks A Lot Like A Patent Troll

• Critical Chrome Browser Bug Under Active Attack

• Hackers stole data from the network of the gaming giant Electronic Arts

• Apple Hires Self-Driving Car Startup Founder and Former BMW Exec Ulrich Kranz

• Verifiable Supply Chain Metadata for Tekton

• Rust/C++ interop in the Android Platform

• The top 6 SSH risks and how regular assessments cut danger

• How to Turn Off Amazon Sidewalk

• How an Obscure Company Took Down Big Chunks of the Internet

• Strong Customer Authentication (SCA) + Arkose Labs = Fortified Payment Security

• PuzzleMaker attacks with Chrome zero-day exploit chain

• New White House guidance for feds returning to the office and the future ‘hybrid’ federal workforce

• How to secure your WordPress login with 2FA

• The Workforce Shortage in Cybersecurity Is a Myth

• Top Cyber Security Challenges Post Lockdown

• Biden’s top cyber nominees face the Senate as the country reels from cyberattacks

• STEM Audio Table Rife with Business-Threatening Bugs

• New twist on DNA data storage lets users preview stored files

• Sen. Warner teases bipartisan bill requiring some companies to report cyberattacks

• How DigitalMint is helping hacking victims pay ransoms in cryptocurrencies

• When ransomware strikes, this company helps victims make bitcoin payments

• The growing issue facing companies that fall under ransomware attacks

• UK Slips In Global Skills Rankings

• Biden revokes Trump’s unenforced Chinese app bans

• Intl. Law Enforcement Operation Disrupts Slilpp Marketplace

• Apple Putting a Stop to Email Tracking Pixels With Mail Privacy Protection in iOS 15 and macOS Monterey

• Sen. Warner teases bipartisan bill requiring some companies to report cyber attacks

• How a Resident Evil image leaked in a ransomware attack ended up in the middle of $12m copyright claim

• Deepfakes Are on the Rise, but Don’t Panic Just Yet

• Deals: AirPods Max Hit $499.00 for the First Time ($50 Off)

• Apple’s Craig Federighi Talks iOS 15 and macOS Monterey With YouTubers

• On the Sliming of Susan Hennessey

• Supreme Court to Hear State Secrets Case Involving Guantanamo Detainee

• The most versatile hardware-encrypted USB flash key awarded highest FIPS validation

• DOJ Accessed Darkside’s Crypto Wallet and Seized $2.27 Million from Pipeline Hackers

• Criminal networks smashed after using “secure” chat app secretly run by cops

• GitHub Improves Policies to Better Distinguish Malware or Vulnerability Research from the Rest

• RockYou2021: The Mother Lode of Password Collections Leaks 8.4 Billion Passwords Online

• Spanish Government Witnesses Cyber Attack

• Chip Maker ADATA Attacked by Ragnar Locker Ransomware Group

• International Sting Operation Cracks Down Encryption Criminal Groups

• Identity and access in the DevSecOps life cycle

• EA drops on news of hack, security stocks rise

• Is Apple’s iCloud Private Relay a VPN? Not Even Close—Here’s Why

• The Professional Development Institute Launches Three New Courses

• Threat Intelligence and Energy and Utilities

• Google Fixes Chrome 0-day Flaw That Exploited in Wild To Target Multiple Companies

• Microsoft: Big Cryptomining Attacks Hit Kubeflow

• Microsoft Exchange Server vulnerabilities, ransomware lead spring 2021 cyberattack trends

• 11 Cybersecurity Vendors to Watch in 2021

• Evaluating WAF Solutions?

• JBS paid $11 million to REvil ransomware out of $22.5M requested

• How experts plan to stop quantum computers from hacking bitcoin wallets

• Threat Detection: What it is and How to Do it Effectively

• JBS Meat pays $11 million ransom to recover from ransomware attack quickly

• Facebook Smartwatch To Include Detachable Cameras – Report

• Are Virtual Machines the New Gold for Cyber Criminals?

• Steam Gaming Platform Delivering Malware

• The Importance of Threat Intelligence for Law Enforcement Agencies

• iOS 15 Allows You to Request Refunds for In-App Purchases Directly Within Apps

• Microsoft xCloud Game Streaming Service Launching on Safari in a ‘Few Weeks’

• Infographic: What Are Bad Bots Doing?

• How purple teams can embrace hacker culture to improve security

• Researchers create an ‘un-hackable’ quantum network over hundreds of kilometers using optical fiber

• Flaws in Rockwell Software Impact Products From Schneider Electric, GE and Others

• Google Releases Security Updates for Chrome

• Cisco Secure Firewall Threat Defense Virtual now supported on Cisco HyperFlex

• iOS 15 Lets Developers Hide Sensitive Information in Widgets on the Lock Screen Until iPhone Is Unlocked

• Gelsemium Cyberspies Linked to NoxPlayer Supply-Chain Attack

• [DZone Community Meetup] The Latest API Security Vulnerabilities with Dmitry Sotnikov

• Dark Sky iOS App, Website, and API Now Scheduled to Remain Available Until End of 2022

• A New Ransomware Group Claims it Breached Over 30 Organizations

• Russia accused of hacking Dutch police during MH17 investigation

• President Biden Drops Trump Quest To Ban TikTok, WeChat

• Researchers create an un-hackable quantum network over hundreds of kilometers using optical fiber

• Cyber Is the New Cold War & AI Is the Arms Race

• Google Patches Chrome zero-day actively exploited

• FaceTime on iOS 15 Alerts You If You Try to Talk While Muted

• macOS Monterey to Support All-New Mail App Extensions, Plug-Ins Will Stop Functioning in Future Release

• Tunbridge Wells Data Breach: Two Kent Schools Closed Following Cyberattack

• How bitcoin is driving the ransomware boom in the U.S.

• Why cybersecurity analysts think ransomware attacks haven’t yet hit their peak

• Meat supplier JBS paid $11 million to ransomware hackers, according to WSJ

• How to Protect Your Corporate Brand and Reputation in the Digital Age (No Fee) Virtual Seminar

• This new hacking group has a nasty surprise for African, Middle East diplomats

• GitHub Starts Scanning for Exposed Package Registry Credentials

• Contrast Announces the First Breakthrough in SAST in 15 Years

• Apple to Offer Beta Versions of AirPods Pro Firmware for Developers

• Italian Government Announces National Cybersecurity Agency

• Meatpacking Organization JBS Pays $11 Million to REvil Ransomware Hackers

• What is Network Detection and Response and Why is it So Important?

• JBS Paid $11M to REvil Gang Even After Restoring Operations

• Security company makes “unbreakable encryption” available via the cloud and APIs

• Honeywell Launches OT Cybersecurity Monitoring and Response Service

• S3 Ep36: Trickbot coder busted, passwords cracked, and breaches judged [Podcast]

• Malware Hides in Steam Profile Images

• Are Cookie Banners a Waste of Time or a Complete Waste of Time?, (Thu, May 20th)

• Meat Giant JBS Pays $11 Million In Ransom To Resolve Attack

• Intel Plugs 29 Holes In CPUs, Bluetooth, Security

• Cops Are Using Facebook To Target Pipeline Protest Leaders

• Hackers Force Iowa College To Cancel Classes For Four Days

• Deals: Amazon Takes $70 Off Apple Watch Series 6 in (Product)RED, Starting at $329 for 40mm

• Ransomware has become a cost of doing business

• Cox Media Group Hit by Cyberattack

• Cisco Supports Secure Firewall Threat Defense Virtual on Nutanix AHV

• 5 key challenges in CPU temperature monitoring and how to overcome them

• US Drops Trump Order Targeting TikTok, Plans Its Own Review

• Chrome zero-day, hot on the heels of Microsoft’s IE zero-day. Patch now!

• Russia-linked APT breached the network of Dutch police in 2017

• Unleashing Enterprise-Grade Advanced Email Security

• Acronis arms service providers with Advanced Email Security to stop all email cyberthreats

• Apple Offering $75 Apple Store Gift Card in Canada With Purchase of iPhone 12 or iPhone 12 Mini Through June 28

• Apple Accidentally Leaks Fitness+ Audio Meditations for Apple Watch

• JBS Pays $11 Million Dollars in Cyber Ransom

• Help Shape the ISSMP Exam

• Malvertising: What It Is and How to Stay Safe

• Microsoft June Patch Tuesday Addresses 50 Security Vulnerabilities Including 6 Zero-Day Bugs

• How SMBs can plan for the new, new normal

• Komodor automates Kubernetes troubleshooting for faster code updates

• ALPACA: New TLS Attack Allows User Data Extraction, Code Execution

• Webinar Today: CISO Guide to Preventing Vendor Email Compromise

• Keeping the UEFA EURO 2020 championship safe

• Breach Clarity Weekly Data Breach Report: Week of June 7

• Apple’s Crowdsourced Find My Network Will Soon Help You Locate Your Lost AirPods Pro or AirPods Max

• Malware Stole 1.2TB Private Data From 3 Mil PCs

• FBI: BEC Scammers Now Impersonate Construction Companies

• A Series of Cryptomining Attacks Are Targeting Kubernetes clusters

• May 2021 Cyber Attacks Statistics

• French Telecoms Giant Altice Acquires Stake In BT

• Confidential Computing: The Future of Cloud Computing Security

• Google Patches Chrome Zero-Day Used by Commercial Exploit Company

• Who Wore It Better? JBS Paid Ransom, Fujifilm Did Not

• Detecting Deepfake Picture Editing

• SASE And CASB: Reclaiming The Perimeter

• Experts React: RockYou2021, Largest Password Leak

• Check Point Software´s May 2021 Most Wanted Malware: Dridex Drops from List While Trickbot Rises to Top

• Amazon data usage to feature in new UK antitrust probe: report

• Operation Jumita: 1.6 tonnes of cocaine and € 16.5 million confiscated in largest cash seizure from a criminal organisation in Spain

• Emerging Ransomware Targets Dozens of Businesses Worldwide

• European Cybersecurity Blogger Awards 2021– Winners Announced!

• The Ministry of Labor and Social Economy of Spain Became Victim of a Cyberattack

• After Having Her Photos Published Online, a Student Receives Millions of Dollars from Apple

• Student Loans Company splashes out on 20,000 cybersecurity training courses – for just 3,300 employees

• Apple Staff Campaign Against Office Recall – Report

• Nefilm Ransomware Group Eyes for $1bn+ Revenue Companies

• President Biden Signs Executive Order Revoking Trump-Era Ban on TikTok and WeChat

• Security provisions in new Senate bill must be ‘strong’ to counter China on IP theft

• FCW Insider: June 10, 2021

• Quick Hits

• Ransomware: Meat firm JBS says it paid out $11m after attack

• Using Breached Password Detection Services to Prevent Cyberattack

• CSO’s guide to the worst and most notable ransomware

• The shared responsibility model explained and what it means for cloud security

• JBS Paid $11 Million To REvil Ransomware Criminals

• How Good Transaction Security Can Make Customer Visits Easier

• Unreleased iPod Touch 5 With Chamfered Edges and 30-Pin Dock Connector Shared Online

• Key Considerations for the Department of Energy on Defending the Bulk Power Grid

• Al Jazeera Media Network Exposed to Cyberattacks Endeavoring to Disrupt Its Services

• 800 criminals arrested in biggest ever law enforcement operation against encrypted communication

• Apple outlined plans to increase consumer data privacy at WWDC

• 5 Tips and Tricks for Cloud Native Security

• Uttarakhand, India Special Task Force Exposed a China Based Money Laundering Racket

• RockYou2021: The Largest Data Leak with 8.4 Billion Passwords

• Want to add antivirus to your existing portfolio?

• New Privacy Features in iOS 15 and macOS Monterey – Intego Mac Podcast Episode 191

• Designing and Building a Security Architecture

• ACSC scanning is allowing Commonwealth entities to avoid being hacked

• With Remote Work, Don’t Leave Security Behind

• South Korea’s data watchdog barks warnings at Microsoft and five local firms

• Facebook, Amazon, WhatsApp, Instagram were not down due to Cyber Attack

• Google scans more than 10 billion apps daily for malware

• Beef Supplier JBS Paid Hackers $11 Million Ransom After Cyberattack

• Mitigating third-party risks with effective cyber risk management

• Ransomware-skewered meat producer JBS confesses to paying $11m for its freedom

• Biggest Cyber Crime Operation Ever By 7 Law Enforcement Agencies – 800 Cyber Criminals Arrested

• Report Reveals 86% Increase of Cyberattacks Targeting Canadian Firms in 2020

• Windows 10 Targeted With Chrome Zero-day Exploits

• Intel’s Latest Patch Plugs Holes in CPU, Bluetooth, and Security Lines

• The Supreme Court Reins In the CFAA in Van Buren

• Analysis of 100 Data Breaches: Part 2, What are the root causes of breaches?

• The 6 steps to implementing zero trust

• Australia to open digital ID system to private sector with consultation on new legislation

• Researchers Discover First Known Malware to Target Windows Containers

• 54% of all employees reuse passwords across multiple work accounts

• It’s Official: (ISC)² Security Congress is Back for the 11th Year in a Row!

• Your Next Cybersecurity Hire May Already Be in Your Organization

• New Chrome 0-Day Bug Under Active Attacks – Update Your Browser ASAP!

• Quantum communications reaching record distances

• Data security still a major concern for most consumers

• Key Business Lessons Learned from The SolarWinds Hack

• Rethinking Remote Monitoring and Management: How MSPs Can Put Security First and Better Protect Their Clients

• European cloud computing market to surpass $140 billion by 2028

• ISC Stormcast For Thursday, June 10th, 2021 https://isc.sans.edu/podcastdetail.html?id=7536, (Thu, Jun 10th)

• Verizon Advanced SASE solution merges SD WAN capabilities with network security services

• Kinetic Business DDoS Mitigation Service helps customers protect networks from attacks

• ¡De nuevo incluidos en el Cuadrante Mágico de Gartner para APM!

• Bell Labs, the Colonial Pipeline and Multi-Factor Authentication (MFA)

• Qrypt Cloud Entropy Portal secures cryptography through the cloud

• Biden revokes Trump-era executive orders that sought to ban AliPay, TikTok, WeChat

• Cisco Webex innovations deliver flexibility and personalization for the hybrid workforce

• Nutanix Elevate Service Provider Program expands hybrid and multicloud solutions delivery

• Meat Company JBS Confirms it Paid $11M Ransom in Cyberattack

• SMART Modular T5PFLC FIPS 140-2 SSDs protects sensitive data against cyberattacks

• Avaya Cloud Office capabilities enhance cloud communications for global businesses

• NetApp ONTAP software powers data services on premises and in the cloud

• CyberArk Identity Security Platform enhancements secure risky access and broaden identity protection

• Zyxel adds new WiFi 6 Mesh products to its portfolio

• Cohesity DataProtect BaaS offering now available for European organizations

• JBS paid REvil hackers $11 million ransom in bitcoin, according to Wall Street Journal report

• ALPACA gnaws through TLS protection to snarf cookies and steal data

• macOS Monterey Allows You to Erase a Mac Without Needing to Reinstall the Operating System

• Apple Explains How Spatial Audio Head Tracking Will Work on Apple TV

• Samsung introduces 8nm RF chip architecture to strengthen 5G communications

• Gelsemium: When threat actors go gardening

• PrivaceraCloud now available in the AWS Marketplace

• Crowdstrike talks subscription economy, enterprise ransomware and client growth

• Crowdstrike CEO on the movement towards enterprise ransomware

• Huawei flings open the doors of its third privacy and security transparency centre

• OMB wants budget boost to rebuild workforce

• Required MFA Is Not Sufficient for Strong Security: Report

• TrapX Security names Steve Preston as CEO

• Panaseer unveils cyber measurement guidance to help avoid incidents

• Cyber Reliant and Canopius offer warranty to protect data in commercial enterprises

• White House: Agencies shouldn’t require vaccinations or ask for employees’ vaccination status

• What to Know About Updates to the PCI Secure Software Standard

• Crypto-mining campaign targets Kubeflow installs on a large scale

• Crowdstrike CEO on the evolution of ransomware: ‘It’s become big game hunting’

• What Data Security Cameras Collect | Avast

• RSA Spins Off Fraud & Risk Intelligence Unit

• IT Security News Daily Summary 2021-06-09

• Mandiant: Compromised Colonial Pipeline password was reused

• CISA Addresses Rise in Ransomware Threatening OT Assets

• Newer Macs Can Use Another Mac as an External Display on macOS Monterey

• What’s in the Senate’s Jan. 6 Report?

• The Successes and Limitations of the First Congressional Report on Jan. 6

• Siloscape, first known malware that drops a backdoor into Kubernetes clusters

• Register today for Connect 2021 and receive exclusive eBooks on video surveillance and access control

• Colonial Pipeline CEO talks ransom with lawmakers

• Expert: Freelancers could set your company up for cybersecurity breach

• Gig workers are here to stay, but they might pose a hidden cybersecurity risk

• Lawsuit Wants Facebook To Be Held Responsible For Ad Discrimination

• Cyberattacks reveal the truth about network vulnerability

• Hackers hit Spain’s Ministry of Labor and Social Economy

• Facebook Working on Smart Watch With Detachable Display and Two Built-In Cameras

• First CMMC assessment organization approved

• The One Thing We Need to Do to Stop Cyberattacks

• Risk and reward: Nefilim ransomware gang mainly targets fewer, richer companies and that strategy is paying off, warns Trend Micro

• meet-in-the-middle attack

• Microsoft resolves 6 zero-days for June Patch Tuesday

• New Security Event @Hack to Take Place in Saudi Arabia

• Your Groovy Guide to SOCstock 2021

• iOS 15 Finally Lets You Block Your Exes From Ruining Your Photo Memories

• Every New Privacy Feature in iOS 15 and macOS Monterey

• Why it’s time to figure out how to keep personal information private, yet useful

• Check Out iPadOS 15’s New Multitasking Features

• ‘PrivacyMic’: For a smart speaker that doesn’t eavesdrop

• EFF and FSFP to Court: When Flawed Electronic Voting Systems Disenfranchise Voters, They Should Be Able to Challenge That with Access to the Courts

• EFF Files Amicus Brief Defending the Right to Repair in Massachusetts

• Space Force focuses on building a digital workforce

• RSA Security spins out its Fraud & Risk Intelligence business into standalone company called Outseer

• Tough Fight Looms Against Ransomware ‘Epidemic’

• New Beats Studio Buds Images Spotted in Regulatory Database

• Patch Central–Third-Party Patch Roundup – May 2021

• BrandPost: SPs and MSSPs Must Differentiate SD-WAN Offerings with Holistic Services

• Microsoft Released a Security Update With The Fixes For 6 New Windows 0-Day Bugs

• Keep Photos Private in a Digital “Shoebox” | Avast

• PrivacyMic looks to keep your home smart without Google, Alexa, Siri and pals listening in

• Kubeflow Deployments Targeted in New Crypto-mining Campaign

• Mysterious Custom Malware Collects Billions of Stolen Data Points

• How could the FBI recover BTC from Colonial’s ransomware payment?

• With Cloud, CDO and CISO Concerns Are Equally Important

• CISA Addresses the Rise in Ransomware Targeting Operational Technology Assets

• Apple Podcasts Subscriptions Launching on June 15

• Did 2020 Break the Internet?

• TikTok, WeChat, and Biden’s New Executive Order: What You Need to Know

• StayHackFree – Your Kid’s Sports Team

• Amazon Sidewalk Mesh Network Raises Security, Privacy Concerns

• New TLS Attack Lets Attackers Launch Cross-Protocol Attacks Against Secure Sites

• 47% Phishing Increase in Q1

• Apple Planning Activity Challenge for International Day of Yoga on June 21

• Op-Ed: Public-private partnerships are essential for deterring cyber threats against business

• How to clear cookies

• Hiring from Within and Retaining Cybersecurity Talent: Building Your Strategy

• Are fraudsters using automation to execute mass cyber-attacks?

• Asymmetrical threats in Cybersecurity

• Navy projects $133 million in business system reforms savings for 2022

• White House warns industry on ransomware threat

• Air Force wants $800 million for enterprise IT as a service

• Intel Plugs 29 Holes in CPUs, Bluetooth, Security

• Navistar International Corporation Hit by Cyberattack

• Hardening the Physical Security Supply Chain to Mitigate the Cyber-Risk

• Security BSides Dublin 2021 – Kirill Efimov’s ‘Sour Mint – The Case Of Malicious Advertisement SDK Affecting Thousands Of Mobile Apps’

• ‘I put the interests of the country first’: Colonial Pipeline CEO on why oil biz paid off ransomware crooks

• This phishing email is pushing password-stealing malware to Windows PCs

• GitHub: Here’s how we’re changing our rules around malware and software vulnerability research

• 5 Global Supply Chain Security Threats (and How to Handle Them)

• Army rolls back IoT restrictions for teleworkers

• DHS faces setbacks implementing CDM, IG says

• Thwarting Upstream Code Flaws From Reaching the Supply Chain

• Biden revokes and replaces Trump executive orders that banned TikTok

• CRSP: The emergency team fighting cyber attacks beside customers

• Mysterious Gelsemium APT was behind February compromise of NoxPlayer, says ESET

• Password steal leads to Colonial Pipeline Cyber Attack

• Microsoft To Sell Products From Its ‘Experience Centres’

• Best mobile VPN 2021: Ensure your privacy anywhere

• Qrypt’s cloud service will distribute entropy for better cryptography

• Cisco Smart Install Protocol Still Abused in Attacks, 5 Years After First Warning

• FBI used encrypted Anom app in international crime bust

• Major Security Flaw Patched by Hyperkitty

• What are the keys to a successful cybersecurity strategy? Our CEO Ran Shahor Explains All

• Several macOS Monterey Features Unavailable on Intel-Based Macs

• Microsoft fixes seven zero-days, including two PuzzleMaker targets, Google fixes serious Android flaw

• 20% of the cattle processing in the USA temporarily shut down by hackers

• Achieving Epic Honor Roll with NetApp

• Google To Halt Charges For Alternative Search Engines On Android

• How to Teach Kids About Online Safety: A Guide

• Billions of passwords leaked online from past data breaches

• FBI seized Colonial Pipeline ransom using private key

• Ragnar Locker Ransomware Hits Electronics Maker ADATA

• Intel Releases 29 Advisories to Describe 73 Vulnerabilities Affecting Its Products

• Is Apple’s Monopoly Making Its Security Vulnerable?

• Getting Ahead of Mandatory Cybersecurity Guidelines for Critical Industries

• macOS Monterey Automatically Resizes Windows Moved to a Secondary Display

• Apple Lists ‘M1X MacBook Pro’ in YouTube Tags for WWDC Keynote Video

• Apple Shares Teaser Trailer for Sci-Fi Thriller ‘Invasion,’ Debuting on Apple TV+ October 22

• This new ransomware group claims to have breached over 30 organisations so far

• Stoltenberg Will Emphasize Cyberattacks During the NATO Meeting

• Hundreds Arrested in a Major Global Crime Sting Using a Chat App

• Latvian woman charged with writing malware for the Trickbot Group

• Operation Trojan Shield a Success: The FBI and Australian Officials

• WAGO Controller Flaws Can Allow Hackers to Interrupt Industrial Processes

• Ransomware Is Not the Problem

• Deals: Save Up to $54 on Apple’s 2020 iPad Air, Available From $549.99 With Multiple All-Time Low Prices

• Windows 10 Targeted by PuzzleMaker Hackers

• El Salvador Adopts Bitcoin As Legal Tender

• Thoughts From a Data Security Expert: 3 Things That Keep Me Up at Night

• Cyber Risk Management Firm Brinqa Raises $110 Million

• Google fixes a critical Android RCE flaw in the System component

• One Fastly Customer Triggered Internet Meltdown

• DHS Chooses Companies To Run Civilian Agency Vulnerability Disclosure Programs

• An0m Encrypted-Chat Sting Leads To Arrest Of 800

• Phil Zimmerman Looks Back On 30 Years Of PGP

• How to Start Disrupting Cryptocurrencies: “Mining” Is Money Transmission

• Top 10 Linux Server Hardening and Security Best Practices

• DarkSide Pwned Colonial With Old VPN Password

• Can your MFA implementations stymie MFA bypass attacks?

• How Collaboration Happens at Duo

• Rep. Katko on how the government and businesses can protect against cyberattacks

• Importance of Using Database Development and Management Tools

• 3 Reasons Why IP Data Can Be Crucial for Cybersecurity

• Military Vehicle And Truck Maker Navistar Discloses Data Breach

• US Senate Passes Bill To Counter China Tech Threat

• Pipeline CEO Defends Paying Ransom Amid Cyberattack

• Why Every Midsize Business Needs a Security Strategy

• Leverage Device Control Plus to secure Mac endpoints and prevent data breaches via peripheral devices

• Genius! Apple Bribes Woman over Naked Pic Theft

• Information Flows and Democracy

• Architecture, compilers and black magic, or “what else affects the ability of AVs to detect malicious files”, (Wed, Jun 9th)

• ‘Spatialize Stereo’ Feature in iOS 15 and macOS Monterey Simulates Spatial Audio for Non-Dolby Content

• The Importance Of New EU Cybersecurity Regulations, Experts Weigh In

• NY City Law Dept Computer Systems Hacked & Shut Down – Experts Comment

• Kent School’s Suffer Cyberattack With Systems Offline And Data Stolen

• Experts Inisght On Security Threats Of VPN And What Organisations Can Do To Manage The Risk Of Ransomware.

• Colonial Pipeline CEO Grilled by Senate but Experts Think Different

• Constituent Platform Used by Congress Affected by Ransomware Attack

• Digital Chamber of Commerce president on crypto’s use in ransomware attacks

• Here’s what the Colonial Pipeline CEO told Congress about the ransomware attack

• Intel’s latest patch set plugs some serious holes in CPU, Bluetooth, server, and – ironically – security lines

• An Inside Look at Cloud Security from Industry Experts

• Cyber Gangs: Who Are They in 2021 and What Do They Want?

• Siemens, Schneider Electric Inform Customers About Tens of Vulnerabilities

• Data Protection in the K-12 Cloud

• Scammers Access 50% of Compromised Accounts Within 12 Hours

• Expert Insight On Amazon Sidewalk Connects Every Smart Device In The World – But Is It Safe?

• Websites Around the World Were Affected by Fastly CDN Outage

• From VPN to ZTNA – The Evolution of Secure Remote Work

• Fastly’s global outage: Here’s what went wrong

• ‘What’s the Price Today?’: FBI Phone App Reaped Secrets of Global Drug Networks

• Nameless Malware Discovered by NordLocker is Now in Have I Been Pwned

• Crypto-Mining Attacks Targeting Kubernetes Clusters via Kubeflow Instances

• What happens to email accounts once credentials are compromised?

• Fastly Blames Global Outages On Software Bug

• EBook – Creating a Large Company Security Stack on a Lean Company Budget

• iOS 15 Tidbits: Text Cursor Magnifier, New Dial Picker, Custom Text Size Per App, and More

• Sting Operation With Underworld App, Results In Hundreds Of Arrests

• FINRA Alerts US Brokerage Companies of a Phishing Operation in Progress with Penalty Threats

• 6 minimum security practices to implement before working on best practices

• Siloscape malware escapes Windows containers to backdoor Kubernetes clusters

• Huawei reveals ‘cybersecurity framework’ with launch of China transparency centre

• PuzzleMaker attacks exploit Windows zero-day, Chrome vulnerabilities

• Apple pays millions of dollars to student after repair staff leak her explicit photos online

• Patch Tuesday, June 2021: Microsoft Releases 50 Security Fixes for Critical Issues Including Six Zero-Days That Are Actively Exploited in the Wild

• Open Source: The Positives, the Risks and the Future

• Endpoint Management Startup Aiden Technologies Closes $2.9 Million Seed Round

• HBO Max App Update for Apple TV Brings Back Native Video Player

• Go fuzz to catch hard-to-find bugs in Go

• The opposition has filed a lawsuit against Roskomnadzor on the illegality of slowing down Twitter in Russia

• Mini-LED Shortages Reportedly Delayed Production of Redesigned MacBook Pro Models

• US Truck and Military Vehicle Producer Navistar Reveals it Has Been Affected by Cyberattack

• Security researcher says attacks on Russian government have Chinese fingerprints – and typos, too

• This Malware that Uses Steam Profile Images to Hide Itself

• Microsoft June 2021 Patch Tuesday addresses 6 zero-days actively exploited

• Apple’s Orders for Key iPhone 13 Camera Component Expected to Outstrip Entire Android Market

• iOS 15: App Store Hides Screenshots of Installed Apps in Search Results to Improve Discoverability

• Prisma Cloud eliminates dangerous blind spots and frees security teams from alert fatigue

• Looking for adding new detection technologies in your security products?

• Siloscape: First Known Malware Targeting Windows Containers to Hack Cloud Environments

• Social Media Regulation: The Line Between Privacy and Protection

• Security researcher says attacks on Russian government have Chinese fingerprints — and typos, too

• Fujifilm Restores Network from Backups Instead of Paying Ransom

• Largest List of Passwords Ever Has Been Released Online

• Update Your Windows Computers to Patch 6 New In-the-Wind Zero-Day Bugs

• IT Service Desk Security a Weak Point for Organizations

• Enhancing cyber resilience: What your team needs to know

• Ransomware attack on New York Law Department

• NHS postpones patient data sharing with 3rd parties till September 2021

• For CISOs and artificial intelligence to evolve, trust is a must

• Australian government looks to make Essential Eight essential

• Organizations leveraging Microsoft Teams exposed to potential risk

• Survey Now Open: What Differences Did the Year Make in Cybersecurity?

• Ransomware and Energy and Utilities

• Ways to setup Squid proxy server and helpful tips

• How can companies prioritize contact center security?

• Most mobile finance apps vulnerable to data breaches

• Dancho Danchev’s Disappearance – 2010 – Official Complaint Against Republic of Bulgaria – Part Four

• Bad bots continue to evolve. Your mitigation strategy should, too.

• Data privacy management software market to grow steadily

• ISACA Workforce Report | Avast

• Health highlights challenges with genomic information under current Privacy Act

• ISC Stormcast For Wednesday, June 9th, 2021 https://isc.sans.edu/podcastdetail.html?id=7534, (Wed, Jun 9th)

• Thales Cinterion IoT Suite Connectivity Activation simplifies and digitalises cellular connectivity

• The case for SaaS data backup and ownership

• Proofpoint unveils people-centric innovations across its three platforms

• FileCloud 21.1 delivers enhanced server speed and security

• Farsight DNSDB Transforms for Maltego offer accurate threat intelligence and fast response to threats

• Ranovus Odin Analog-Drive CPO 2.0 reduces overall costs of hyperscale data center operations

• Extra urgency in June’s Patch Tuesday: Microsoft warns six more bugs are being exploited

• iOS 15 and macOS Monterey Introduce Ability to Capture 15-Second Gameplay Recordings Using a Game Controller

• Siren partners with SECTION6 to strengthen its presence in the APAC region

• Ivanti partners with Citrix to help employees stay productive in the everywhere workplace

• Extra urgency in June’s Patch Tuesday: Microsoft warns six bugs are being exploited

• VERT Threat Alert: June 2021 Patch Tuesday Analysis

• Apple’s WWDC 2021: Five new privacy features announced

• Unreleased ‘World Timer’ Watch Face Featured in WWDC Session

• Deloitte acquires CloudQuest to bolster cloud security offerings

• CISA selects Bugcrowd and EnDyna to launch its VDP platform

• Unit 42 Discovers First Known Malware Targeting Windows Containers

• New CSPM Functionality Frees Teams from Alert Noise and Blind Spots

• Hundreds of suspected criminals arrested after being tricked into using FBI‑run chat app

• Cloud Security Alliance updates its CAIQ to increase value for cloud service providers and customers

• Colonial Pipeline CEO testifies to Congress after DOJ recovers ransom

• 800+ criminals arrested after FBI turned Anom app into honeypot

• FBI paid renegade developer $180k for backdoored AN0M chat app that brought down drug underworld

• A Year of Action in Support of the Black-Led Movement Against Police Violence and Racism

• FBI paid renegade developer $180k to make backdoored AN0M chat app that brought down drug underworld

• IRS chief presses case for boost in IT, cyber funding

• Phished Account Credentials Mostly Verified in Hours

• Apple Shares Daily WWDC Highlights on YouTube

• Hands-On With iOS 15: See Apple’s New Operating System Update in Action

• Brinqa raises $110M to accelerate adoption of risk-based cybersecurity

• ITC Secure joins Microsoft Intelligent Security Association to tackle rapidly evolving cyber threats

• The FBI likely exploited sloppy password storage to seize Colonial Pipeline bitcoin ransom

• Examining Real Examples of DNS Abuse: A Summary Overview of the 2nd DNS Abuse Forum

• 20% of Employers Never Require Employees to Change Passwords

• Microsoft Patch Tuesday Fixes 6 In-The-Wild Exploits, 50 Flaws

• SAP Patches Critical Vulnerabilities in NetWeaver

• Microsoft Patches 6 Zero-Days Under Active Attack

• SAP Releases June 2021 Security Updates

• The Security Digest: #64

• Apple Music: How to Enable Dolby Atmos Spatial Audio

• Bitcoin tumbles after FBI recovers Colonial Pipeline ransom

• IT Security News Daily Summary 2021-06-08

• Constituent platform used by Congress hit with ransomware as NYC faces legal department hack

• FBI Issues Encrypted Devices to Capture Criminals

• Apple Shares Details on Designing Third-Party Accessories Compatible With U1 Chip

• Lawfare Live: Molly Reynolds and Quinta Jurecic on the Senate’s First Jan. 6 Report

• Cyberthreats Go Sideways

• How gamers should secure their accounts from cyber attacks

• Lewd Phishing Lures Aimed at Business Explode

• Microsoft Patches Six Zero-Day Security Holes

• Colonial Pipeline CEO: Ransomware Attack Started via Pilfered ‘Legacy’ VPN Account

• Toolmarks: LNK Files in the news again

• 4 issues in Microsoft Office component allow weaponizing docs

• Apple Music Spatial Audio With Dolby Atmos ‘Coming Soon’ to Android Devices

• TrickBot Coder Faces Decades in Prison

• NYC’s 1,000-Lawyer Law Department Targeted by Cyberattack

• iOS 15 Lets Your Family Access Your Data If You Die

• June 2021 Patch Tuesday: Microsoft fixes six actively exploited zero-days

• Microsoft CISO Shares Remote Work Obstacles & Lessons Learned

• Adobe Releases Security Updates for Multiple Products

• How Employees Can Keep Their 401(k)s Safe From Cybercriminals

• Microsoft Releases June 2021 Security Updates

• References to Intel’s Latest Ice Lake SP Processors in Xcode 13 Beta Hint at Forthcoming Mac Pro Update

• What Is Protocol and Its Types in Networking?

• Google Patches Critical Android RCE Bug

• Microsoft Raises Alarm for New Windows Zero-Day Attacks

• New TabularData Available in Swift on macOS Monterery (et al)

• iOS 15 Includes Secure Paste Feature That Hides the Clipboard From Developers

• Apple Aims to Lure Android Users to iPhone With Improved ‘Move to iOS’ Experience in iOS 15

• Microsoft June 2021 Patch Tuesday: 50 vulnerabilities patched, six zero-days exploited in the wild

• Microsoft June 2021 Patch Tuesday, (Tue, Jun 8th)

• Apple Releases New ‘3E756’ AirPods Max Firmware

• TrickBot indictment reveals the scale and complexity of organized cybercrime

• Colonial CEO defends $4.3M ransomware payment

• OPM finalizes 2019 proposal for re-hiring former feds

• Top 5 things to know about medical data security

• Facebook-Owned WhatsApp Defends End-To-End Encryption

• The Russian expert assessed the demand of the State Department to stop cyberattacks on the United States

• Rust/C++ interop in the Android Platform

• Adobe Patches Major Security Flaws in PDF Reader, Photoshop

• Cyber Resilience: The Emerald City of the Security World

• How an Obscure Company Took Down Big Chunks of the Internet

• PuzzleMaker attacks with Chrome zero-day exploit chain

• iOS 15 Automatically Archives Expired Boarding Passes and Tickets in Wallet App

• With tvOS 15, You Can Sign Into Apps Using Face ID or Touch ID on Your iPhone

• Preserving Liberal Democratic Institutions Through Engagement

• The Invisible Rules That Govern Police Use of Force

• Top Cyber Security Challenges Post Lockdown

• Civil Society Groups Seek More Time to Review, Comment on Rushed Global Treaty for Intrusive Cross Border Police Powers

• A New Ransomware Dubbed BlackCocaine Uses AES & RSA Encryption Methods

• This is how fast a password leaked on the web will be tested out by hackers

• ‘An0m’ Encrypted-Chat Sting Leads to Arrest of 800

• Cryptography whizz Phil Zimmermann looks back at 30 years of Pretty Good Privacy

• Apple’s Zane Lowe Introduces Apple Music Spatial Audio

• iPhone Apps on iPadOS 15 Now Run in Landscape

• DoJ: Investigations into ransomware attacks must have similar priority as terrorism

• How voice biometrics can help MNOs reduce fraud

• Introducing Digital First: A new revolution in mobile card issuance

• Magic in Cybersecurity: Magic links to replace the password

• Digital transformation explained

• FBI uses ANOM App to capture more than 800 criminals worldwide

• GlobalFoundries Seeks To Dismiss IBM Claim For $2.5 Billion

• Reduce the Attack Surface with These Unique Runtime Features

• Avoid Making Costly Mistakes with Your Mobile Payment Apps

• Feds recover $2.3 million in cryptocurrency paid by Colonial Pipeline in ransomware attack

• India’s Finance Software Powerhouse NSE Blown By EpsilonRed Ransomware

• TrustSec Policy Analytics – Part Two: Policy Visualization

• Apple Announces ShazamKit to Enable Audio Recognition in Third-Party Apps, Even on Android

• Software Giant Expands its Capabilities with Acquisition of Code Dx

• Verifiable Supply Chain Metadata for Tekton

• Apple Announces New Features in iOS 15, iPadOS 15, and macOS Monterey

• BrandPost: Simplifying Network Operations with Digital Experience Monitoring

• ‘Leading by example’ and organizational performance

• Feds Secretly Ran a Fake Encrypted Chat App and Busted Over 800 Criminals

• Stop Threats Before they Spread with Automated Website Scanning and Malware Removal

• Identity and access in the DevSecOps life cycle

• Mophie Launches New ‘Snap’ Line of MagSafe-Compatible Accessories

• Apple to Update Logic Pro With Spatial Audio Tools Later This Year

• Optimize security with Azure Firewall solution for Azure Sentinel

• TikTok Sneakily Updates Their Privacy Policy To Collect Users’ Biometric Data

• Siloscape malware targets Windows containers, breaks through to the underlying Kubernetes cluster

• Organizations Warned About DoS Flaws in Popular Open Source Message Brokers

• RockYou2021: The Mother Lode of Password Collections Leaks 8.4 Billion Passwords Online

• iOS 15 Can Automatically Add and Remove Widgets to a Smart Stack

• New MacBook Pro Shipments Forecasted to Begin in Third Quarter

• Apple FaceTime To Open Up To Android, Windows Users

• Examing Real Examples of DNS Abuse: A Summary Overview of the 2nd DNS Abuse Forum

• Identity Verification Platform Troolio Closes a $394 Million Deal

• Private Details Compromised After Cyber Attack on NSW Health

• 1Password Teases Safari Web Extension Already Working on iPadOS 15

• Eddy Cue Says Spatial Audio on Apple Music is Equivalent to Watching HD Television for First Time

• What Is a Feature Pack?

• Colonial Pipeline CEO to testify on cyberattack —Here’s what to expect

• What is Fastly and why did it just take a bunch of major websites offline?

• Learning the Building Blocks You Need for Consumer Identity and Access Management Part 2: Engage

• An Answer to APP Scams You Can Bank On

• Code Dx brings game-changing capabilities to Synopsys

• Palo Alto Networks Extends Scope of CSPM Platform

• How Putting Risk First in Cybersecurity is Driving IRM Adoption

• Spotify, PayPal, GitHub, and other major websites down due to Fastly CDN outage

• Apple Previews TV+ Shows Coming in Summer 2021 and Beyond, Including Second Season of Ted Lasso

• Safari on iOS 15 and macOS Monterey Automatically Upgrades Web Connections to HTTPS on Compatible Sites for Improved Security

• Deals: Save $100 on Apple’s 2020 M1 Mac Mini, Starting at $599.99 for 256GB

• What is Audit Failure in Event Viewer?

• Jim Cramer on bitcoin’s price slump following U.S. recovering Colonial Pipeline ransom recovery

• Ransomware Attacks Are Here to Stay

• Google To Pay £189m, And Change Advertising Businesses

• CISA Announces Vulnerability Disclosure Policy Platform

• GitHub Improves Policies to Better Distinguish Malware or Vulnerability Research from the Rest

• Adobe Updates Illustrator, InDesign, and Lightroom Classic to Run Natively on M1 Macs

• New Kubernetes Malware Backdoors Windows Containers

• Early endeavors on the path to reliable quantum machine learning

• [DZone Community Meetup] The Latest API Security Vulnerabilities with Dmitry Sotnikov

• 3 things you might not know about modern ransomware and how Nefilim makes money

• New UAF Flaw Affecting Microsoft Office to be Patched Today

• Critical Vulnerabilities Patched in Android With June 2021 Security Updates

• How to Turn Off Amazon Sidewalk

• Craig Federighi: Apple Will Continue to ‘Protect Our Customers’ Amid ‘Innovation’ in Privacy Exploitation

• Deals: Amazon Introduces Pair of Record Low Prices on Apple’s 27-Inch iMacs (Save Up to $399)

• 800 arrests after police dupe crime groups into using backdoored phones

• DoS vulns in 3 open-source MQTT message brokers could leave users literally locked out of their homes or offices

• Billions of Compromised Records and Counting: Why the Application Layer is Still the Front Door for Data Breaches

• WAGO Controller Flaws Can Allow Hackers to Disrupt Industrial Processes

• Will New Executive Order on Cybersecurity Fast Track Zero Trust?

• AMD Unveils Faster W6000 Series Graphics Cards Suitable for Intel-Based Mac Pro

• Can Identity Verification Build Trust In The UK’s Sharing Economy?

• White House Warns Companies to Step Up Cybersecurity – But is it Too Late?

• Synopsys discovers denial of service vulnerabilities in RabbitMQ, EMQ X, and VerneMQ

• Feds seize $2.3 million in cryptocurrency wallet reportedly used in Colonial Pipeline ransomware attack

• Kets Quantum Security rolls out quantum-safe chip-based encryption development kits

• Lost iPhone? With iOS 15, ‘Find My’ works even when an iPhone is off or wiped

• A deep dive into Nefilim, a ransomware group with an eye for $1bn+ revenue companies

• Evil Corp Impersonates PayloadBin Group to Avoid Federal Sanctions

• Cisco SecureX with Secure Firewall: More Value Than Ever

• Malware Hides in Steam Profile Images

• iOS 15 Tidbits: Rearrange Home Screen Pages, Disable All App Badge Notifications, and More

• New Kubernetes Malware Backdoors Clusters Via Windows Containers, Expert Weighs In

• Comment: Education Sector to See a Rise in Ransomware

• NetApp delivers storage as a service, powered by Equinix

• Next generation FlexPod moves your data center into the hybrid cloud

• “Make it harder for us”: Four words that IT teams will never say

• Announcing NetApp Keystone Flex Subscription 2.1

• Strengthened by NetApp data management, IBM Satellite simplifies the hybrid cloud journey

• Cyber risk platform Brinqa nabs $110M amid surge in breaches

• Criminal networks smashed after using “secure” chat app secretly run by cops

• Trojan Shield, the biggest ever police operation against encrypted communications

• Reddit, Gov.uk, Spotify, PayPal And More Go Down In Fastly CDN Outage

• Four Security Vulnerabilities Were Found In Microsoft Office

• Experts React: US Recovers Millions Paid To Colonial Pipeline Ransomware Hackers

• Make New Connections with (ISC)² Community

• FBI recovers millions in ransom from DarkSide ransomware gang

• Critical Business Operations Are At Risk, and Companies Are Not Making This a Priority

• Apple Unveils VPN-Like Service and New Privacy Features at WWDC 2021

• DOJ Accessed Darkside’s Crypto Wallet and Seized $2.27 Million from Pipeline Hackers

• Fastly CDN Server Issue Brings Down Swathes of Websites [Update: Solved]

• Apple in ‘Early-Stage’ Talks With Chinese EV Battery Makers for Apple Car

• Apple’s New Privacy Features for iOS 15, iPadOS 15, and macOS Monterey

• Major Websites Down After Global Outage

• Four Security Vulnerabilities were Found in Microsoft Office

• The Ultimate Guide to 2020 MITRE ATT&CK® Evaluations

• Bain and Crosspoint Capital acquire ExtraHop in $900M deal

• Hundreds Arrested in ‘Staggering’ FBI Encrypted Phone Sting

• Fastly CDN Server Issue Brings Down Swathes of Websites

• May 2021 Cyber Attacks Statistics

• U.S. officials recover $2.3 million in crypto used to pay ransom in Colonial Pipeline hack

• DoJ Recovers Most Of Colonial Pipeline Ransom

• South Korea Under Major Cyber Attacks in Pandemic Era

• New UAF Vulnerability Affecting Microsoft Office to be Patched Today

• Vulnerabilities in Weapons Systems

• Bitcoin slides 8% after U.S. seizes most of Colonial Pipeline ransom

• DOJ recovers pipeline ransom, signals more aggressive approach to cybercrime

• Elon Musk’s Crypto Tweets Have Allegedly Destroyed Lives

• Woman Charged for Involving in TrickBot Banking Malware Creation

• Department of Justice Reclaims Millions of Dollars Paid to Colonial’s Attackers

• Top 10 Privacy and Security Features Apple Announced at WWDC 2021

• iCloud+ to Let iCloud Mail Users Personalize Their Email Domain Name

• CSPM explained: Filling the gaps in cloud security

• 10 things to do now to reduce the cost of your next data breach

• GAO calls out US government agencies: Get your supply chain security act together

• Jeff Bezos And Brother Book Seat On Blue Origin Debut Space Flight

• Securing Your Cloud Transformation Journey

• Quick Hits

• FCW Insider: June 8, 2021

• Bitcoin slides 7% after U.S. seizes most of Colonial Pipeline ransom

• Composable: The Future of IT Infrastructure?

• New Evil Corp Ransomware Disguised as PayloadBin to Avoid Sanctions

• iOS 15: Redesigned Apple TV Siri Remote in Control Center

• I think therefore IAM: It’s not cool, it’s not sexy, but it’s one of the most important and difficult areas in modern IT

• “IT burden” and cybersecurity “trade-offs” take center stage in a new digital collaboration survey

• 800 criminals arrested in biggest ever law enforcement operation against encrypted communication

• Expanding the Have I Been Pwned Volunteer Community

• Apple Music Spatial Audio to Get Dynamic Head Tracking in the Fall

• DoJ seized $2.3 million paid to the Colonial Pipeline ransomware extortionists

• U.S. Recovers $2.3 Million Ransom Paid to Colonial Pipeline Hackers

• A Look into Chuck Brooks’s Alarming Cybersecurity Stats

• Application security testing is not just buzzwords

• Ukraine Suspects Russia Behind a Spear Phishing Campaign

• US authorities recovered most of the ransom paid by Colonial Pipeline

• The Principal of ‘Least Privilege’ in the World of Cybersecurity

• The Many Challenges of a CISO – The ClubCISO 2021 Information Security Maturity Report

• Best Practices for Ransomware Defense

• How the FBI and AFP accessed encrypted messages in TrojanShield investigation

• Choosing the Right AI Components in Your Security Tools

• CloudQuest to be acquired by Delloite

• US DOJ recovers more than half of ransomware payment of Colonial Pipeline hack

• Kuo: Apple’s First AR Headset to Launch in Second Quarter of 2022

• Defending the COVID-19 vaccine rollout with best practices from the cybersecurity industry

• GitHub Updated Policies For Actively Used Exploits, Malware & Vulnerability Research

• Unauthorized access accounts for 43% of all breaches globally

• Apple privacy protections in iOS 15, iPadOS 15, macOS Monterey, and watchOS 8

• Reformulating the cyber skills gap

• Application security approaches broken by rising adoption of cloud-native architectures

• Biden’s plan for strengthening US cybersecurity is too soft

• ISC Stormcast For Tuesday, June 8th, 2021 https://isc.sans.edu/podcastdetail.html?id=7532, (Tue, Jun 8th)

• Guidance to help cyber threat intelligence analysts apply MITRE ATT&CK

• Apple’s new privacy feature, designed to mask users’ internet browsing, won’t be available in China

Generated on 2021-06-13 23:59:41.771724