KEYNOTE SPEAKER GERD LEONHARD
Month: September 2021
0 - CT 0 - CT - CISO Strategics - Cybersecurity Frameworks 0 - CT - SOC - CSIRT Operations - Malware & Ransomware Attack CISO Country CSRC Cyber Info Providers Partners Cyber Security Global Ransom Ransomware
csrc – Cybersecurity Framework Profile for Ransomware Risk Management
Announcement This revised draft addresses the public comments provided for the preliminary draft released in June 2021. Ransomware is a type of malware that encrypts an...
0 - CT 0 - CT - SOC - CSIRT Operations - Malware & Ransomware Attack CISO Country Cyber Info Providers Partners Cyber Security Global Ransom Ransomware ZDNET
zdnet – FBI decision to withhold Kaseya ransomware decryption keys stirs debate
Many security experts defended the FBI’s decision to leave Kaseya victims struggling with ransomware infections for weeks. This week, the Washington Post reported that the FBI had the...
0 - CT 0 - CT - SOC - CSIRT Operations - Data Leak & Breach Incidents Notepad Apple CISO Country Cyber Info Providers Partners Cyber Security Data Breaches Data Leak Global IT Vendors The Hacker News welivesecurity
thehackernews – Apple’s New iCloud Private Relay Service Leaks Users’ Real IP Addresses
A new as-yet unpatched weakness in Apple’s iCloud Private Relay feature could be circumvented to leak users’ true IP addresses from iOS devices running the latest...
Infosecurity magazine – LG to Acquire Cybellum
The board of directors at Korean electronics company LG Electronics has approved the acquisition of Israel-based vehicle cybersecurity startup Cybellum. In announcing the deal on Thursday, LG said it would assume...
0 - CT 0 - CT - SOC - CSIRT Operations - Malware & Ransomware CISO CISO MAG Country Cyber Info Providers Partners Cyber Security Global Ransom Ransomware
cisomag – Immutable Backups are Key to Becoming Resilient Against Ransomware: Veeam
Ransomware groups now prioritize seeking and encrypting data in backups to make the recovery process difficult unless the ransom is paid. That’s why it’s important to...
CISO CISO Cyber Resources Library Country Cyber Info Providers Partners Cyber Security Tools Enhanced CyberSecurity Tools Global SecurityWeekly
securityweekly – Building a More Secure AppDev Process
Enterprises that integrate security testing into their CI/CD pipeline fix 91.4 percent of new issues, according to a progress report from ShiftLeft. Recent software supply chain attacks...
0 - CT 0 - CT - SOC - CSIRT Operations - Cyber Incidents & Attacks Notepad Attack CISO CISO MAG Country Cyber Info Providers Partners Cyber Security Global
cisomag – What are Credential Stuffing Attacks and How to Prevent Them
In credential stuffing attacks, threat actors leverage stolen or leaked credentials like usernames and passwords to break into user accounts illicitly.By CISOMAG – September 21, 2021SHARE FacebookTwitter Read Aloud Thwarting...
0 - CT 0 - CT - SOC - CSIRT Operations - Malware & Ransomware CISO Country Cyber Info Providers Partners Cyber Security cyberdefensemagazine Global Ransom Ransomware
cyberdefensemagazine – Defeat Ransomware with Immutable Backup Data and Encryption
Move beyond traditional security strategies to protect against the two most common types of ransomware threats By Jon Toor, CMO, Cloudian The Director of the FBI...
0 - CT 0 - CT - SOC - CSIRT Operations - Malware & Ransomware CISO Country Cyber Info Providers Partners Cyber Security Global Linux Microsoft Windows Products and Services Targets The Hacker News
thehackernews – New Malware Targets Windows Subsystem for Linux to Evade Detection
A number of malicious samples have been created for the Windows Subsystem for Linux (WSL) with the goal of compromising Windows machines, highlighting a sneaky method...
App-aware Attack CISO Country Cyber Attacks Cyber Info Providers Partners Cyber Security Global Google Google Android IT Vendors Products and Services The Hacker News
thehackernews – Google to Auto-Reset Unused Android App Permissions for Billions of Devices
Google on Friday said it’s bringing an Android 11 feature that auto-resets permissions granted to apps that haven’t been used in months, to devices running Android...
CISO Country Cyber Info Providers Partners Cyber Security Global Hacker arrested Hackers The Hacker News
thehackernews – Europol Busts Major Crime Ring, Arrests Over 100 Online Fraudsters
Law enforcement agencies in Italy and Spain have dismantled an organized crime group linked to the Italian Mafia that was involved in online fraud, money laundering,...
Uncategorized
teissTalk: Shadow-IT – keeping security out of the way of productivity?
This audio-only version of our twice weekly cyber security talk show, teissTalk. Join us twice a week for free by visiting www.teiss.co.uk/talk On this episode, we...
Uncategorized
Should The U.S. Ban Chinese and Russian Technology?
Every year, seemingly, there’s a new story of some software – like ‘Tik Tok’ or ‘FaceApp’ – from a hostile country that may or may not...
Uncategorized
058| Paths to Infosec: From ER to IR
Data breaches and other security incidents have become a frequent, severe problem for organizations. But with incident responders in short supply, there are fewer professionals available...
0 - CT 0 - CT - Cyberattacks - Phishing 0 - CT - SOC - CSIRT Operations - Data Leak & Breach Incidents Notepad
Electioneering, domestic, but with international implications. The Mirai botnet is exploiting OMIGOD. Container shipper sustains data breach. Odd ads. Phishing with Mr. Musk’s name.
Cyber electioneering, in Hungary and Russia, the latter with some international implications. The Mirai botnet is exploiting the OMIGOD vulnerability. A shipping company deals with data...
Microsoft Patch Tuesday fixes actively exploited zero‑day and 85 other flaws
The most recent Patch Tuesday includes a fix for the previously disclosed and actively exploited remote code execution flaw in MSHTML. The post Microsoft Patch Tuesday...
Uncategorized
Numando: Count once, code twice
The (probably) penultimate post in our occasional series demystifying Latin American banking trojans. The post Numando: Count once, code twice appeared first on WeLiveSecurity
Uncategorized
Week in security with Tony Anscombe
Analysis of Numando banking trojan, steps to mitigate attack surface, and more! – Week in security with Tony Anscombe The post Week in security with Tony...
Abuses App-aware Awareness CISO Country Cyber Info Providers Partners Cyber Security Global The Hacker News
thehackernews – New Stealthier ZLoader Variant Spreading Via Fake TeamViewer Download Ads
Users searching for TeamViewer remote desktop software on search engines like Google are being redirected to malicious links that drop ZLoader malware onto their systems while simultaneously embracing...
0 - CT 0 - CT - SOC - CSIRT Operations - Threat Intelligence CISO Country Cyber Info Providers Partners Cyber Security Global Hackers Hacking Hacking Operations The Hacker News USA
thehackernews – 3 Former U.S. Intelligence Officers Admit to Hacking for UAE Company
The U.S. Department of Justice (DoJ) on Tuesday disclosed it fined three intelligence community and military personnel $1.68 million in penalties for their role as cyber-mercenaries...
0 - CT 0 - CT - SOC - CSIRT Operations - Cyber Incidents & Attacks Notepad Attack CISO Country Cyber Attacks Cyber Info Providers Partners Cyber Security Global nakedsecurity
nakedsecurity – Windows zero-day MSHTML attack – how not to get booby trapped!
Details are scarce so far, but Microsoft is warning Office users about a bug that’s dubbed CVE-2021-40444, and described as Microsoft MSHTML Remote Code Execution Vulnerability. The bug doesn’t have...
0 - CT 0 - CT - Cybersecurity Vendors - Microsoft Attack CISO Cyber Attacks Cyber Info Providers Partners Cyber Security The Hacker News
thehackernews – Microsoft Warns of Cross-Account Takeover Bug in Azure Container Instances
Microsoft on Wednesday said it remediated a vulnerability in its Azure Container Instances (ACI) services that could have been weaponized by a malicious actor “to access...
thehackernews – WhatsApp to Finally Let Users Encrypt Their Chat Backups in the Cloud
WhatsApp on Friday announced it will roll out support for end-to-end encrypted chat backups on the cloud for Android and iOS users, paving the way for storing information...
Abuses Attack CISO Cyber Info Providers Partners Cyber Security Google Android Products and Services welivesecurity
welivesecurity – BladeHawk group: Android espionage against Kurdish ethnic group
ESET researchers have investigated a targeted mobile espionage campaign against the Kurdish ethnic group, and that has been active since at least March 2020. ESET researchers...
welivesecurity – ProtonMail forced to log user’s IP address after an order from Swiss authorities
ProtonMail a Swiss-based secure email provider has been at the center of some controversy after it was forced to share the IP address of one of...
0 - CT 0 - CT - Cybersecurity Tools - ANTI DDOS 0 - CT - SOC - CSIRT Operations - Cyber Incidents & Attacks Notepad 0 - CT - SOC - CSIRT Operations - DDOS Attacks Attack CISO Country Cyber Attacks Cyber Crime Groups Modus Operandi Cyber Info Providers Partners Cyber Security Global The Hacker News
thehackernews – Mēris Botnet Hit Russia’s Yandex With Massive 22 Million RPS DDoS Attack
Russian internet giant Yandex has been the target of a record-breaking distributed denial-of-service (DDoS) attack by a new botnet called Mēris. The botnet is believed to...
0 - CT 0 - CT - SOC - CSIRT Operations - Malware & Ransomware Asia Attack CISO Country Cyber Info Providers Partners Cyber Security Global Ransom Ransomware The Hacker News
thehackernews – Russian Ransomware Group REvil Back Online After 2-Month Hiatus
The operators behind the REvil ransomware-as-a-service (RaaS) staged a surprise return after a two-month hiatus following the widely publicized attack on technology services provider Kaseya on July 4....