IT Security News Weekly Summary – Week 48

• IT Security News Daily Summary 2020-11-29

• Advantech Suffered Conti Ransomware Attack – Hackers Demand 750 BTC Ransom

• Gaming Tech 101: What Every Beginner Gamer Needs

• How to Download High Quality Music to Your PC

• How to Protect Your Dispatch Software From Online Threats

• Apple Fitness+ Promotion Ramps Up as Launch Approaches

• Robert M. Lee’s & Jeff Haas’ Little Bobby Comics – ‘WEEK 305’

• Common Cybersecurity Challenges and Solutions

• Big Companies Are Not Immune to Ransomware

• Demand in Endpoint Protection Platform Market to Skyrocket as Frequency of Cyber-Attacks Increases

• DoppelPaymer Ransomware Hits Masterchef, Big Brother Producer

• Three years of NetApp AI: Looking back and looking ahead

• Phoenix CISO Shannon Lawson Shares Top Cyberstrategies

• Don’t be duped by fake domains this Cyber Monday

• Protecting the healthcare industry from cyber threats

• Malware in Minecraft mods Games Attack More Than 1 Million Android Users

• A critical flaw in industrial automation systems opens to remote hack

• Critical Vulnerability In Basecamp Could Allow Remote Code Execution Attacks

• Are Media Agencies the Next Target of Cybercriminals?

• Security Affairs newsletter Round 291

• Quick Tip: Using JARM With a SOCKS Proxy, (Sun, Nov 29th)

• Fake Among Us apps floating over the internet can deploy malware and adware in your device

• What Is the Signal Encryption Protocol?

• Sopra Steria estimates financial Impact of ransomware attack could reach €50 Million

• Authorities disrupt massive stolen credit card trading scam on dark web

• Cyber Monday Deals: Grab 15 World’s Best Cyber Security Bundle Courses From “Ethical Hackers Academy” Upto 90% Offer

• Operators behind Dark Caracal are still alive and operational

• Week in review: Drupal-based sites open to attack, cPanel 2FA bypass vulnerability

• Getting Ready for the New Zealand Privacy Act 2020

• Multilingual Cybersecurity Awareness Training adapted for your needs

• Penetration testing

• Celebrating European Sustainable Development Week 2020

• Russia was included in the list of countries with the most active hackers

• Intrusion Analysis 101

• Study Reveals US is Largest Data Theft Target in the World

• Weekly Update 219: IoT Unravelled with Scott Helme

• IT Security News Daily Summary 2020-11-28

• Data Backup and Recovery Strategies during Work from Home

• DEF CON 28 Safe Mode Password Village – Dr. Matt Weir’s ‘Practical PCFG Password Cracking’

• Captcha’d

• DEF CON 28 Safe Mode Password Village – Dr. Matt Weir’s ‘Practical PCFG Password Cracking Q/A’

• Google Security Researcher Banned From COD: Modern Warfare For Reverse Engineering

• Chip maker Advantech hit by Conti ransomware gang

• Drupal Release Emergency Fixes For Critical Code Execution Flaws

• 7 big data goals for 2021: AI, DevOps, hybrid cloud, and more

• Fashion Forward: how technology is reshaping the fashion industry

• Office 365 phishing campaign leverages Oracle and Amazon cloud services

• South Korea Fines Facebook For Sharing Data Without User Consent

• The Best Gifts For Hackers

• Manchester United Silent On Cyber Attack Demands Report

• A Hacker Is Selling Access To The Email Accounts Of Hundreds Of C-Level Executives

• TurkeyBombing Puts New Twist On Zoom Abuse

• 2021 Healthcare Cybersecurity Priorities: Experts Weigh In

• British Drug maker AstraZeneca Working to Deploy the Covid-19 Vaccine Targeted by Suspected North Korean Hackers

• It’s Time to Stop Sharing Your Passwords With Your Partner

• Top Stories: Black Friday Deals, Redesigned MacBooks, Hands-On With Apple’s M1 Macs

• Is AliExpress Safe? The Answer Might Surprise You

• Hundreds of C-level executives credentials available for $100 to $1500 per account

• Shazam Promotion Offers Users Up to Five Free Months of Apple Music

• ‘Build’ or ‘Buy’ your own antivirus product

• How to enhance onboarding for digital banking services using risk management

• What is unified endpoint management? UEM explained

• Europol and partners thwart massive credit card fraud scheme

• Week in security with Tony Anscombe

• Black Friday – IoT Devices Bought Today Are Far Riskier Than Consumers Think

• Expert Reaction On News: Among Us App Used To Distribute Malware

• Threat Hunting with JARM, (Fri, Nov 27th)

• Drupal emergency updates fix critical arbitrary PHP code execution

• IT Security News Daily Summary 2020-11-27

• Password leak exposes millions of Covid-19 patients in Brazil

• Apple M1 Chip: Everything You Need to Know

• Apple Black Friday 2020: Best iPhone Deals

• Out-of-band Drupal security updates fix bugs with known exploits

• Will Microsoft add Android support to Windows 10 next year?

• What is a Certificate Revocation List (CRL) vs OCSP | Keyfactor

• MacRumors Giveaway: Win a 9-in-1 USB-C Adapter From Choetech

• Test

• DEF CON 28 Safe Mode Password Village ‘Getting Started with Hashcat’

• XKCD ‘Linguists’

• North Korean hackers allegedly behind cyberattacks on AstraZeneca

• Fast-Paced Racing Game ‘Warp Drive’ With Teleporting Feature Now Available on Apple Arcade

• Apple Black Friday 2020: Best Deals on HomeKit-Supported TVs

• Rand McNally Suffers Cyberattack

• 16 Million Brazilian COVID-19 Patients Data Exposed

• Ransomware Hits Largest U.S. Fertility Clinic

• Home Depot 2014 Data Breach Update: $17.5 Million Multistate Settlement Reached

• Xbox Subdomain Vulnerability Exposed Users’ Email Addresses

• Vulnerability allowed bypassing 2FA in WHM & cPanel by bruteforcing

• TurkeyBombing Puts New Twist on Zoom Abuse

• Experts Call for Online Fake News to Be Addressed as #COVID19 Vaccine Emerges

• How to Reduce Fake News in Online Advertising

• Working From Home Doesn’t Mean Working Unsafely

• European Parliament Votes to Support Right to Repair

• Why the power to neutralise the threat of ransomware lies within your network

• What is an SMB Relay Attack?

• Manchester United email servers remain offline amid what is being called a ‘ransomware’ attack

• Artificial Intelligence Cybersecurity market to generate $101.8B by 2030

• A hacker is selling access to the email accounts of hundreds of C-level executives

• Canon Reveals Security Breach, Very Sensitive Data Exposed

• Two in Five Home Workers Vulnerable to Cyber-Attacks

• (adsbygoogle = window.adsbygoogle || []).push({});

• NCSC Helping Man United Recover from Cyber-Attack

• Facebook Accused Of Secret “Orwellian” Internal Algorithm

• Drupal Releases Security Updates

• Fortinet FortiOS System File Leak

• Developer Successfully Virtualizes Windows for Arm on M1 Mac

• Apple Black Friday 2020: Best Accessory Deals

• 5 Common Reasons Why People Downgrade Software

• Why are self-driving cars not offered to us at level 5 by deep learning?

• 6 Aspects to Consider While Choosing a Substitute for Dark Sky API for Weather

• 5 Ways Big Companies Are Spying on You Online

• Google Removed Two Baidu Android Apps Collecting Users’ Sensitive Data From Play Store – One Restored Recently

• Leader of biggest online sextortion ring ‘Nth Room’ jailed for 40 years

• Financial Impact of Ransomware Attack on Sopra Steria Could Reach €50 Million

• Over 40 arrested in biggest-ever crackdown against drug ring smuggling cocaine from Brazil into Europe

• 5 Signs Someone Might be Taking Advantage of Your Security Goodness

• How did your turkey trot to your home this year?

• A week later, Manchester United has yet to recover after a cyberattack

• Apple Black Friday 2020: Our Top Picks

• Experts On NHS Patients Have Data Exposed After Human Mistake

• Cyber Monday Shopping Guide 2020: Essential Cybersecurity Tips

• UK infoseccer launches petition asking government not to backdoor encryption

• Identity Verification: How to improve digital adoption & trust

• SecTor 2020, Canada’s Biggest Cybersecurity Event: Day Two

• North Korean Hackers Target AstraZeneca For Covid Vaccine

• ThreatList: Cyber Monday Looms – But Shoppers Oblivious to Top Retail Threats

• Cybersecurity Predictions for 2021: Robot Overlords No, Connected Car Hacks Yes

• Canon Says Data Stolen in August 2020 Ransomware Attack

• Three Nigerians Arrested for Cybercrime Operation Targeting 150 Countries

• U of Vermont Medical Center Continuing Cyber-Attack Recovery

• New Code to Force Tech Giants to Provide Greater Data Transparency and Choice

• COVID Vaccine Maker AstraZeneca Targeted by Alleged North Korean Hackers

• Failing Toward Zero: Why Your Security Needs to Fail to Get Better

• Apple Shares Trailer for ‘Mariah Carey’s Magical Christmas Special,’ Premieres December 4

• UK To Implement Tougher Competition Rules On Tech In 2021

• Drupal Releases Out-of-Band Security Updates Due to Availability of Exploits

• US Extends TikTok Sale Deadline to December 4

• Cyber security 2021 : What new threats can be expected?; here is our estimate

• The global impact of the Fortinet 50.000 VPN leak posted online

• Undermining Democracy

• Vulnerability In cPanel Two-factor Authentication Could Allow Brute-force Attacks

• 6 Security Tips for Ecommerce Websites

• Unofficial Patch Released for Windows 7 Zero-Day Vulnerability

• SMB Skills Gaps and #COVID19 Imperil Cyber-Resilience

• Fertility Patients’ Sensitive Personal Information Stolen During Ransomware Attack

• Trump’s Election Attack Ends December 14—Whether He Knows It or Not

• How to Tell Which Apps Are Optimized for M1 Apple Silicon Macs

• Canon confirms data theft in August’s ransomware attack

• Facebook’s Libra To Launch In January – Report

• Facebook Tweaks News Feed Algorithm Post-Election | Avast

• Return Of Mirai Botnet | Avast

• Networking equipment vendor Belden discloses data breach

• One in Seven #BlackFriday Emails Are Malicious

• Details of 16 million Brazilian COVID-19 patients exposed online

• Personal data of 16 million COVID-19 patients in Brazil leaked online

• Fertility patients’ data stolen in ransomware attack

• cPanel 2FA Bypass Exposes Tens of Millions of Websites to Hack

• Man United Unable to Fully Restore Systems After Cyberattack

• NHS Error Exposes Data on Hundreds of Patients and Staff

• Sophisticated case of money laundering leads to 15 arrests in Malta

• Apple Could Add Force Touch Sensors to Future MacBook Pro Touch Bar

• Digitally Signed Bandook Malware Once Again Targets Multiple Sectors

• Canon publicly confirms August ransomware attack and data breach

• Group-IB launches new threat hunting and attack prevention solution

• Want your endpoint security product in the ‘Microsoft Consumer Antivirus Providers for Windows’ ?

• Researchers found another way to hack Tesla Model X Key Fob

• Discussing Threats Around Online Shopping

• Beyond the firewall: Intrusion Detection Systems

• WAPDropper – Android Malware Subscribing Victims To Premium Services By Telecom Companies

• Attacks are rising in all vectors and types

• Black Friday Shopping witnessed record Web Traffic and Cyber Threats

• ESET renamed as best Mobile Threat detector for second year

• Top digital security worries when it comes to remote employees

• The current state of third-party risk management

• Securing SAP SuccessFactors – Protecting Human Capital

• The AI in cybersecurity market to generate $101.8 billion in 2030

• Cyber insurance claims on the rise

• SIM swap scam: What it is and how to protect yourself

• FBI warns of threat actors spoofing Bureau domains, email accounts

• DOD, Coast Guard resume health records deployment

• Pentagon tightens workplace restrictions as COVID cases spike

• Donaldson gets permanent appointment as INSLM

• Gestión de múltiples navegadores: simple con Browser Security Plus

• Control de acceso a los recursos críticos, un desafío para las organizaciones

• The ICO Fines Ticketmaster UK £1.25 Million for Security Failures: A Lesson to be Learned

• AstraZeneca’s best COVID vaccine result was a fluke. Experts have questions

• How one developer is sneaking emulators through a hole in the Xbox Store

• This AI tool generates your creepy lookalikes to trick facial recognition

• ZTE is still a security threat according to FCC decision

• Twitch finally supports any two-factor authentication app

• Personal data of 16 million Brazilian COVID-19 patients exposed online

• IT Security News Daily Summary 2020-11-26

• IoT Unravelled Part 5: Practical Use Case Videos

• Sopra Steria records heavy financial loss after Ryuk ransomware attack

• Hackers Love Expired Domains

• Mobileiron Vulnerability Used By State-backed Hackers To Break Into Networks – Experts Insight

• To Succeed, Enterprise Cybersecurity Needs IoT Scale

• Want to certify your security software with an internationally recognized testing organization?

• Want your endpoint security product in the ‘Microsoft Consumer Antivirus Providers for Windows’ ?

• #DTX Cybersecurity Mini Summit: How CISOs Can Transform an Organization’s Cyber-Capabilities

• Ransomware hits US Fertility the largest US fertility network

• (adsbygoogle = window.adsbygoogle || []).push({});

• Black Friday 2020: Thanksgiving Day Deals on AirPods, M1 Macs, Apple Watch Series 6, iPads

• Foxconn Moves Some Apple Production To Vietnam

• Bzzzzzzt! How safe is that keenly priced digital doorbell?

• #DTX Cybersecurity Mini Summit: How CISOs Can Transform an Organizations’ Cyber-Capabilities

• Cybersecurity Company Sophos Hit By Data Breach Attack, Company Informs Customers

• Trump Administration Grants ByteDance TikTok Sale Extension

• Sophos breach: Customer data exposed due to permission access flaw

• GDPR Has Had Successes, Requires Public Knowledge of Data Spread

• Speaking at Conferences, 2020 edition

• Danish news agency Ritzau hit by ransomware, but did not pay the ransom

• Apple’s Gift Card Offer Begins in Australia and New Zealand, Doesn’t Apply to Latest Products Like M1 Macs

• Apple News+ Offering Extended Three-Month Free Trial Through Monday

• Entersekt releases findings from State of Online Shopping Report UK

• Penetration testing

• Ransomware damage to businesses is estimated to be $1 billion

• Using similarity to expand context and map out threat campaigns

• Tech Giants Face Fines Or Even Break-up, Warns EU Digital Head

• How Ubiq Security uses APIs to simplify data protection

• Defining Codes of Conduct to Enable Post Brexit GDPR Compliance

• Home Depot Hiring Security Chief Six Years After Major Security Incident

• Happy Thanksgiving From Morphisec

• Carding Action 2020: Group-IB supports Europol-backed operation saving €40 million

• UK Environmental Committee Says Apple Contributing to ‘Throwaway Culture’ of ‘Short-Lived Products’

• Cloud IAM and Cloud PAM Challenges Explained

• Major Nigerian Phishing and BEC Actors, SSGToolz and CeeCeeBossTMT, Arrested by Nigerian Police and Interpol

• Caution! These Black Friday “deals” may be bad for your security

• How to Color Calibrate Your Mac’s Display

• Black Friday; Securely Dispose of Your Old Mac; The HomePod mini – Intego Mac Podcast Episode 163

• Two arrests in Spain for terrorist financing

• EU Plans New Rules Giving Europeans More Control of Data

• DDoS Attacks Against Online Retailers Increase Four-Fold During Pandemic

• Massive BEC Phishing Ring Uncovered, 3 Nigerian Nationals Arrested

• Two-Factor Authentication Bypass Flaw Affects 70 Million+ Domains

• Expert Reaction On Onfido’s Survey Shows UK Consumers Demanding Better Digital Identity Verification

• SECURITY ALERT: Zoom Video Phishing Emails Targeting Corporate HVTs (UPDATED)

• Why is it called a firewall?

• Amazon Web Services Restored After Outage

• Suspected BEC scammers arrested in Nigeria following year-long Interpol investigation

• Changing Employee Security Behavior Takes More Than Simple Awareness

• Federated Learning: A Therapeutic for what Ails Digital Health

• Acronis and World Economic Forum Partner to Combat Global Cybercrime

• Sophos notifies data leak after a misconfiguration

• Complete Our Survey and Redeem an Extended 60-Day Trial of Thor Foresight Enterprise [EXTENDED]

• Coronavirus Pandemic Impacts Full Fibre Broadband Rollout

• New Egregor Ransomware Steps into Maze Group’s Shoes

• ByteDance Granted Seven-Day Extension of TikTok Sale

• Cybersecurity predictions for 2021: automation set to drive spear phishing campaigns

• How secure are your AI and machine learning projects?

• Weakest Link In Security | Avast

• A zero-day in Windows 7 and Windows Server 2008 has yet to be fixed

• Apple Asks Foxconn to Move Some MacBook and iPad Production From China to Vietnam

• Researchers discover Windows zero-day vulnerability

• Safer Online Shopping | Avast

• UK Spies Urge Firms to Patch MobileIron Bug ASAP

• Happy Thanksgiving

• CVE-2020-24407: Magento RFI

• Should Driverless Cars Navigate by Stars?

• Rumored 2021 High-End iPad Pro May Feature 5G With mmWave Support

• Hackers could get anyones email on Xbox Live due to bug

• Fake Among Us app used to distribute malware

• Privacy campaigner flags concerns about Microsoft’s creepy Productivity Score

• Sophos notifies customers of data exposure after database misconfiguration

• Sopra Steria: Ryuk Attack May Cost Us $60m

• Electricity bill of over €1.5 million leads police to 5 illegal marijuana plantations in Spain

• Officers foil fraudsters from stealing €40 million in payment card scam

• SSH-backdoor Botnet With ‘Research’ Infection Technique

• There is a long history of cybersecurity issues in the automotive history

• IoT Unravelled Part 4: Making it All Work for Humans

• Disable Amazon Sidewalk for Now

• Interpol Arrests 3 Nigerian BEC Scammers For Targeting Over 500,000 Entities

• Become a White Hat Hacker — Get 10 Top-Rated Courses at 97% OFF

• How to mitigate risks in an interconnected intelligent enterprise

• Ransomware attacks on 3 US healthcare providers

• Insider Threat- Raytheon employee sells missile data to China

• Willyama’s role in helping Indigenous Australians secure a career in cybersecurity

• WA Auditor reveals ‘concerning’ security practices within state Registry System

• Worldwide cloud security market to reach $20.9 billion by 2027

• Automation to shape cybersecurity activities in 2021

• ZTE stays on FCC national security threat list

• Facebook fined in South Korea for sharing user data without consent

• Emerging Public Cloud Security Challenges in 2020 and Beyond

• Enterprises addressing data security and e-waste issues generated by remote work

• How consumers feel about retail data breaches

• GoDaddy employees tricked in attack against cryptocurrency firms

• The ransomware plague cost the world over $1 billion

• Amazon MWAA: Enabling data engineers to easily execute data processing workflows in the cloud

• AdaCore launches new edition of GNAT Pro to support Wind River Helix Virtualization Platform

• Xbox bug could have allowed hackers to link gamer tags with players’ emails

• 7 Reasons to be Thankful for Your Cybersecurity Team

• Black Friday 2020: AirPods Pro Reach Lowest Price Ever of $169

• Apple Black Friday 2020: Best Apple Watch Deals Including Series 3 From $119

• Cyber Risk Aware and Blue Cube Security tackle the increasing cyber threat to businesses

• How to Improve Your Workplace’s Cybersecurity

• Belden discloses data breach as a result of a cyber attack

• 6 Straight Years of Delivering Outstanding Support

• Act Fast: AirPods Pro Reach Lowest Price Ever of $169 for Black Friday 2020

• Omar Hussain joins Secure AI Labs Board of Directors

• The best gifts for hackers

• Understanding the Australian Inquiry into ADF War Crimes in Afghanistan

• Asia-Pacific Trade Deal RCEP Is Signed; Xi Signals Potential Interest in CPTPP

• (adsbygoogle = window.adsbygoogle || []).push({});

• Trump’s Tweets Attacking the Election Echo Russian Trolls

• Why the Nagorno-Karabakh Cease-Fire Won’t End the Conflict

• IT Security News Daily Summary 2020-11-25

• Do you have a security tools gap?

• This Bluetooth Attack Can Steal a Tesla Model X in Minutes

• DEF CON 28 Safe Mode Voting Village – EvilMog’s ‘From Printers To Silver Tickets Or Something’

• CYBER Rules: DOD’s DFARS and CMMC Explained

• Remote workforce, web portal, and DevSecOps: Three focus areas for cybersecurity

• Expert Insight On The Bluetooth Attack To Steal A Tesla Model X In Minutes

• Expert Commentary: Spotify Launches ‘Rolling Reset’ On Customer Accounts, Passwords Linked To Data Leak

• Title: Top 5 Business Benefits Of Cybersecurity Compliance

• The Importance Of Disaster Recovery Planning In 2020 And Beyond

• Robots for kids: STEM kits and more tech gifts for hackers of all ages

• Security researcher accidentally discovers Windows 7 and Windows Server 2008 zero-day

• Mastercard expands digital ID trial with Deakin and Australia Post

• Report: Facebook Is Using Privacy As An Excuse To Come After Apps That Give Users More Control

• What is a Look-alike Domain?

• Operation Falcon: Group-IB helps INTERPOL identify Nigerian BEC ring members

• Apple M1 MacBook Pro vs. Intel MacBook Pro (13-Inch) Buyer’s Guide

• Expert Advise In Relation To CISA Warns Of Holiday Online Shopping Scams

• Home Depot Reaches $17.5 Million Settlement Over 2014 Breach

• Spoofed FBI Domains Pose Risk Of Cybercrime And Disinformation

• Comment: Baidu Caught Collecting Sensitive Details From Android Users

• identity management (ID management)

• Nigerians Arrested Over International BEC Scam

• Phishing Most Frequently Reported Cybercrime in US

• Expert Advise On Black Friday And Cyber Monday

• Belden Suffers Breach

• Fake ‘Minecraft Mods’ Attack More Than One Million Android Devices

• MobileIron Remote Code Execution Vulnerability

• Phishing Email Campaign Impersonates Government Pandemic Relief Agencies

• Top 5 business sectors targeted by ransomware

• Look Beyond the ‘Big 5’ in Cyberattacks

• Do You Know Who’s Lurking in Your Cloud Environment?

• Google Finally Pulls Chinese Apps Stealing Personal Data

• Go inside the new Azure Defender for IoT including CyberX

• Learning The [Defence] Ropes 101 – Splunk Setup & Config

• Stories from the SOC – Multi-layered defense detects Windows Trojan

• Verizon Launches 2020 Cyber Espionage Report

• Bristol City Council Data Breach Revealed Names Of Disabled Children

• House Dems look to funding bill to block Schedule F

• Three members of TMT cybercrime group arrested in Nigeria

• China lashes out at India app block, UK 5G ban

• Major BEC Phishing Ring Cracked Open with 3 Arrests

• 5 business sectors ransomware targets

• Medical Officer Speaks Out Against Cyber-Bullying

• Election Cyber Threats in the Asia-Pacific Region

• Reliable Leaker Suggests Redesigned MacBooks in 2021 Will Include Both Apple Silicon and Intel Models

• Apple’s Global Security Chief Indicted in Scheme to Trade iPads for Gun Permits, but Apple Says It’s Found No Wrongdoing

• Is 2FA by SMS a bad idea?

• Feedzai’s Financial Crime Report shows increase in fraud rate by 60% during the pandemic

• Visa Wants to Buy Plaid, and With It, Transaction Data for Millions of People

• Patch Management For Businesses | Avast

• Critical MobileIron RCE Flaw Under Active Attack

• Danish News Agency Rejects Ransom Demand After Hacker Attack

• 8 benefits of a security operations center

• #DTX Cybersecurity Mini Summit: Awareness Key to Securing a Remote Workforce

• FBI Warns of Spoofed Domains Imitating their Website

• As Screen Time Skyrockets, So Does Threat of Fake Apps

• Ransomware Groups Break Promises, Leak Data Anyway

• Top 7 Use Cases for Digital Risk Protection

• What’s the point of habitual cookie consent? Analytics?

• The Cequence Security Blog – Top 5 Posts of 2020

• AppSec Decoded: The consequences of insecure IoT devices

• Automate Security Response With Cortex XSOAR and Recorded Future

• Xbox Boss Discusses Apple Arcade, App Store Fees, and Game Pass Streaming in Safari

• Want to add antivirus to your existing portfolio?

• Baltimore County Public Schools hit by Ransomware Attack

• France Warns Big Tech To Pay Digital Tax In December

• Laser-Based Hacking from Afar Goes Beyond Amazon Alexa

• How to Update Your Remote Access Policy – And Why You Should Now

• Banks looking to confidential computing for solutions to money laundering, theft, and fraud

• S3 Ep8: A conversation with Katie Moussouris [Podcast]

• Phishing Campaign Uses Malicious Office 365 App

• Home Depot Agrees To $17.5 Million Settlement Over 2014 Data Breach

• Hackers Accidentally Expose Spotify User Data They Stole

• Bug Allowed Hackers To Get Anyone’s Email Address On Xbox Live

• Laser-Based Hacking Goes Beyond Amazon Alexa

• Twitter To Relaunch Verification Scheme In 2021

• Eliminating Violence Against Women | Avast

• Ransomware: This new variant could be the next big malware threat to your business

• Light-Based Attacks Expand in the Digital Home

• S3 Ep8: A conversation with Katie Moussouris

• Home Depot Settles with US States Over 2014 Data Breach

• #DTX Cybersecurity Mini Summit: How to Apply Individualized Zero-Trust Architecture

• Why Security Awareness Training Should Be Backed by Security by Design

• Prevention Is Better Than the Cure When Securing Cloud-Native Deployments

• How to Detect Look-alike Domain Registrations

• Retail giant Home Depot agrees to a $17.5 million settlement over 2014 data breach

• ‘Tis the Season for Cybercriminals: Retail’s Top Cyber Threats

• Apple’s Annual Holiday Ad Revolves Around ‘The Magic of Mini’

• Android users targeted by WAPDropper malware

• IoT cybersecurity bill passed by Senate

• Banking Cybersecurity Provider DefenseStorm Raises $19 Million

• LOQBOX Appoints Tim Porter as New Chief Risk Officer

• Fake Minecraft Modpacks On Google Play Deliver Millions of Abusive Ads and Disrupt Normal Phone Usage

• Pinterest soon to join the Online Classes Plethora

• Suspicious network resurrections

• Ryuk Ransomware – Untangling a Convoluted Malware Narrative

• Spotify resets some user logins after hacker database found floating online

• (adsbygoogle = window.adsbygoogle || []).push({});

• The Career-Changing Magic of Tidying Up

• GitHub Patched A Vulnerability Months After Google’s Report

• Researcher Hacked Tesla Model X Demonstrating Keyless Entry System Vulnerability

• Elon Musk Overtakes Bill Gates As World’s Second Richest

• India Bans Another 43 Mobile Apps In China Confrontation

• This software flaw is being used to break into networks now, so update fast

• Amazon: We’re hiring software engineers who know programming language Rust

• Cloud Security Company Lightspin Emerges From Stealth Mode

• 2FA Bypass Vulnerability Patched in cPanel & WebHost Manager

• Belden Discloses Data Breach Affecting Employee, Business Information

• Peatix Braces Users for Follow-On Attacks After Breach

• Top Security Tips for Online Shopping

• ForgeRock Tops KuppingerCole Leadership Compass for CIAM

• Watch out, WAPDropper malware could subscribe you to premium services

• Cyber Public Health

• Twitter Says Account Verification to Return in Early 2021

• What is swatting? Unleashing armed police against your enemies

• How to use Windows Defender Attack Surface Reduction rules

• YouTube suspends OANN for allegedly peddling fake COVID-19 cures

• Ticketmaster: We’re not liable for credit card badness because the hack straddled GDPR day

• Why Better Password Hygiene Should Be Part of Your New Year’s Resolutions

• Secure Access Service Edge Provider Cato Networks Raises $130 Million

• Fines Less of a Concern than Reputational Damage for Public Sector Security

• Some Apple M1 Mac Owners Reporting Bluetooth Connectivity Issues

• Experts Warning And Advice On Black Friday Threats

• Baidu caught collecting sensitive data from Android users

• Ritzau news agency suffers cyberattack

• cPanel 2FA bypass vulnerability can be exploited through brute force

• Want your endpoint security product in the ‘Microsoft Consumer Antivirus Providers for Windows’ ?

• Check Point Software Revolutionize Its Cyber Security Certification Program

• Home Depot agrees to $17.5 million settlement over 2014 data breach

• FBI in Threat Warning After Surge in Spoofed Domains

• Group-IB Hi-Tech Crime Trends 2020/2021 report

• Apple Reportedly Solves Widespread iCloud Music Library Sync Issues

• Stantinko Proxy Trojan Masquerades as Apache Servers

• E-Commerce Biz and CEO Charged with Investor Fraud

• UK NCSC’s alert urges orgs to fix MobileIron CVE-2020-15505 RCE

• Live Patching Windows API Calls Using PowerShell, (Wed, Nov 25th)

• Is Airbnb Safe?

• New malware fraudulently subscribes victims to premium phone services

• Spotify Hack – Over 300k Accounts Hacked in Credential Stuffing Attack

• IoT Unravelled Part 3: Security

• Telsa Flaw Let Attackers to Steal Vehicles in Minutes

• 2-Factor Authentication Bypass Flaw Reported in cPanel and WHM Software

• DevSecOps: 4 Reasons You Need One

• Virtual tabletop exercise coordinated by Europol: Disrupting terrorism and violent extremism online

• Baidu’s Android Apps Caught Collecting and Leaking Sensitive User Data

• Is your organization prepared for PCI DSS 4.0?

• Ransomware news headlines trending on Google

• CrowdStrike reports more ransomware attacks on Australian Organizations

• Database leak exposed mass credential stuffing against Spotify users

• Fireside Chat: Future of Offensive Attack Simulation – Strategies, Tools & Techniques

• Using drones to improve 5G network security

• Challenges organizations face in combating third-party cyber risk

• Russian expert warned about the dangers of password theft during video conferencing

• Maintaining Retailer Cybersecurity During Peak Holiday Shopping Season

• It’s Become Open Season on VPNs. Is Your Organization Protected?

• Around 18,000 fraudulent sites are created daily

• SMBs eagerly adopting IaaS, 60% prefer resellers over providers

• Google binned two apps by China’s Baidu, which says researchers got it wrong by linking it to personal info leaks

• Apple HomePod mini Review: Siri in a Compact Speaker

• Up to 350,000 Spotify accounts hacked in credential stuffing attacks

• Is Cybersecurity Smart Enough to Protect Automated Buildings?

• ISC Stormcast For Wednesday, November 25th 2020 https://isc.sans.edu/podcastdetail.html?id=7268, (Wed, Nov 25th)

• Kuo: Redesigned MacBooks With Apple Silicon to Launch in Second Half of 2021

• The training data solution for machine learning teams

• Linux: How to recover deleted files with testdisk

• Apple Security Chief Allegedly Tried to Bribe Police With iPads

• Home Depot Agrees to $17.5 Million Settlement With States Over 2014 Data Breach

• The Future of Cloud-Native Security is Here!

• DigiCert and Atea deliver a fully managed service for multiple types of digital certificate-based use cases

• TeamViewer 15.12 for macOS: Improved performance and less energy consumption

• NETGEAR launches new WiFi 6 Access Point for home offices and small businesses

• Rockwell Automation improves security of visualization apps with new industrial PCs and software

• How one security researcher is working to secure vulnerable IoT devices

• Spotify resets up to 350,000 passwords linked to third-party data leak

• Google binned two apps by China’s Baidu after researchers spotted personal data leakage

• India blocks another 43 Chinese mobile apps, including AliExpress and TaoBao Live

• Who Was The Pirate? Curious Case of Blackbeard’s Murder

• Democratic Source Code for a New U.S.-EU Tech Alliance

• Accenture acquires End-to-End Analytics to accelerate analytics, data, and AI business growth

• Splunk expands its observability capabilities with the acquisition of Flowmill

• Entersekt partners with Cellulant to guard against digital banking and payment fraud

• 2020-11-24 – TA551 (Shathak) Word docs with English template push IcedID

• CMMC countdown is on but are there enough assessors to do the job?

• Graylog: How to add clients to the system log manager

• 2FA bypass in cPanel potentially exposes tens of millions of websites to hack

• Exclusive Networks to add global scale and services capability to the Nuaware proposition and portfolio

• Let’s Stand Up for Home Hacking and Repair

• What to expect from Joe Biden’s DOD

• Security awareness training best practices for MSPs

• Baidu Apps Leaked Location Data, Machine Learning Reveals

• Latest Version of TrickBot Employs Clever New Obfuscation Trick

• 5 advantages of the principle of least privilege

• IT Security News Daily Summary 2020-11-24

• A Federal Remote Workforce: Problems and Possibilities

• Sphero spinout Company Six launches throwable, video-streaming wheeled drone for first responders

• Post-Breach, Peatix Data Reportedly Found on Instagram, Telegram

• 6 best practices for IoT security during global uncertainty

• CISA Warns of Holiday Online Shopping Scams

• (adsbygoogle = window.adsbygoogle || []).push({});

• How Ransomware Defense is Evolving With Ransomware Attacks

• DEF CON 28 Safe Mode Voting Village – Panel: The Feds On Election Security

• FireEye Acquires Respond Software to Advance Cybersecurity AI

• Baidu Android apps removed from Play Store because caught collecting user details

• How to Install Any iPhone or iPad App on an M1 Mac

• Victory! Court Protects Anonymity of Security Researchers Who Reported Apparent Communications Between Russian Bank and Trump Organization

• Robotic dogs patrol Tyndall AFB

• Using technology to protect citizen-facing workers

• Location analytics for COVID-safe workplaces

• 2FA bypass discovered in web hosting software cPanel

• ‘Minecraft Mods’ Attack More Than 1 Million Android Devices

• How to use the Google One VPN on Android

• Weighing remote browser isolation benefits and drawbacks

• US Proposes Funding to Clear Risk Assessment Backlog

• Alexa, Disarm the Victim’s Home Security System

• Exposed AWS Secret Access Key To GitHub Can Be a Costly Affair – A Personal Experience

• Watchdog says Pentagon’s effort to ‘harmonize’ cyber is lacking

• What’s in Store for Privacy in 2021

• US Treasury’s OFAC Ransomware Advisory: Navigating the Gray Areas

• Cloud Security Startup Lightspin Emerges From Stealth

• Small Businesses are Counting on Their MSPs this Small Business Saturday

• Space Cybersecurity in the Age of Defending Forward

• Crash Analysis Series: An exploitable bug on Microsoft Teams ?! A Tale of One Bit

• VMware urges sysadmins to apply workarounds after critical Workspace command execution vuln found

• Trickbot Update Moves Off Disk, Becomes Harder to Detect

• South Korean Conglomerate E-Land Infected by Undisclosed Ransomware

• Update to Crippling Cyberattack on Brazilian Courts

• Senate proposes $58M boost to CISA’s budget to clear out risk assessment backlog

• Hackers Trick GoDaddy Employees in Operation Targeting Cryptocurrency Services

• Business continuity vendors bolster offerings during pandemic

• Compare 5 SecOps certifications and training courses

• Gift card hack exposed – you pay, they play

• Cyber-attacks Reported on Three US Healthcare Providers

• DEF CON 28 Safe Mode Voting Village – BiaSciLab’s ‘Don’t Go Postal’

• XKCD ‘Unread’

• M1 Macs Able to Run Up to Six External Displays Using DisplayLink

• Apple Shares Praise From Developers Happy With 15% App Store Fee Cut

• Apple Reminds Developers to Submit Privacy Info for ‘Nutritional Label for Apps’ Feature

• Baidu Apps in Google Play Leak Sensitive Data

• Smart Doorbells on Amazon, eBay, Harbor Serious Security Issues

• Baidu Android apps caught leaking sensitive data from devices

• Chinese State-Sponsored Hackers Exploiting Zerologon Vulnerability

• A new Stantinko Bot masqueraded as httpd targeting Linux servers

• The special case of TCP RST, (Tue, Nov 24th)

• Microsoft Azure Active Directory again a “Leader” in Gartner Magic Quadrant for Access Management

• Apple security hampers detection of unwanted programs

• Blockchain In Medicine and Pharmaceuticals: Complete Overview of Possibilities

• Introduction To OAuth Framework

• Prosecuting within complex criminal networks is hard. Data analysis could save the courts precious time and money

• Chinese Threat Actor ‘Mustang Panda’ Updates Tools in Attacks on Vatican

• Bill Proposes Stricter Security for UK Telecom Companies

• Printers’ Cybersecurity Threats Too Often Ignored

• ABCs of UEBA: R is for Risk

• TrickBot operators continue to update their malware to increase resilience to takedown

• M1 Macs Able to Run Up to Six External Displays Using DisplayPort Adapters

• Threat modeling and Application security testing are not just buzzwords

• UK NCSC offers tips to dodge Black Friday Cyber Scams

• Bug in Twitter Fleets Where Posts Remain Visible

• 3 Ways to Hunt for the ZeroLogon Vulnerability on Your Windows Servers

• Stantinko’s Linux malware now poses as an Apache web server

• Blackrota Golang Backdoor Packs Heavy Obfuscation Punch

• Canonical Publishes Secure Container Application Images on Docker Hub

• Organizations Should Use Psychology to Promote Secure Behavior Among Staff

• Online Holiday Shopping Scams

• Security Intelligence Handbook Chapter 3: The Security Intelligence Lifecycle

• Study: Certifications Boost Salaries Substantially

• UK Telcos Face Large Fines For Using Huawei Kit

• Stantinko’s Proxy After Your Apache Server

• How a Cybersecurity Training Program Can Recruit From Inside Your Business

• The Changing Face of OT Security

• Europol Intellectual Property Crime Conference 2020

• Stantinko Botnet Now Targeting Linux Servers to Hide Behind Proxies

• 5 Cyber Lessons Learned From the U.S. Election

• The Building Company: “Building” the future with OpManager

• New Partnerships Boost OT/IoT Security Across Digital Environments

• 3 simple ways to drastically reduce Active Directory administration costs [E-book]

• Student Spotlight: Perseverance with Rana Khalil

• Tesla Hacked And Stolen Again Using Key Fob

• Debunking The Election’s Most Widespread Voter Fraud Claims

• Telecom Firms Face £100k Daily Fines Over Security

• Critical VMware Zero-Day Bug Allows Command Injection

• Hacker Leaks The User Data Of Event Management App Peatix

• M1 Macs Able to Run Up to Six External Displays Using DisplayLink Adapters

• Podcast Episode: Control Over Users, Competitors, and Critics

• OneWeb Emerges From Bankruptcy For UK Space Push

• Robotic vacuum cleaners could be hacked to spy on you

• OctopusWAF: A Customizable Open-Source WAF for High Performance Applications>

• An Introduction to Cipher Suites | Keyfactor

• Blockchain in 2021 is a tale of two speeds

• Spotify launches ‘rolling reset’ on customer accounts, passwords linked to data leak

• FBI Warns of Spoofed FBI-Related Domains

• UK Telecom Companies Face Big Fines Under New Security Law

• On-brand Phishing: When Attackers Use Your Assets Against You

• Experts Insight On User Data Of Event Management App Peatix Hacked

• Canonical publishes set of secure container application images

• High-Severity XSS Flaw In TikTok Could Allow Account Takeover

• Celebrating Virtual Holidays In 2020 | Avast

• The History of Cybersecurity | Avast

• Attivo Networks Returns as ‘ASTORS’ Premier Sponsor for Third Year

• 1Password: My favorite password manager is an essential security tool

• (adsbygoogle = window.adsbygoogle || []).push({});

• Baidu’s Android apps caught collecting sensitive user details

• Tesla Hacked and Stolen Again Using Key Fob

• VMware Working on Patches for Critical Workspace ONE Access Vulnerability

• Business continuity vendors bolster offerings during a pandemic

• Apple’s Head of Global Security Facing Bribery Charges

• Advanced Tips on Managing Multi-Account Setup on AWS with Terraform

• Microsoft fixes Kerberos Authentication issues with an out-of-band Update

• On That Dusseldorf Hospital Ransomware Attack and the Resultant Death

• HomePod Mini Shipping Times Slip into January Across Europe as Global Stocks Dwindle

• Spotify passwords stored on a cloud database by a hacker with no password

• Tesla’s bluetooth vulnerabilities mean X models can be stolen in a matter of minutes

• Brazilian government recovers from their worst cyberattack yet

• 8 types of phishing attack and how to identify them

• New US IoT law aims to improve edge device security

• Hackney Council Confirms Hack Still Causing ‘Significant Disruption’

• Apple Security Boss Charged With Bribery

• IBM To Axe 8,000 Staff In Europe – Report

• #BlackFriday: 84% of Consumers Willing to Risk Personal Data in Search of Bargains

• Percepto raises $45 million for robots that inspect critical infrastructure

• Hacker leaks the user data of event management app Peatix

• SEC alleges Benja CEO duped investors to fund a non-existent e-commerce empire

• FBI: Fake versions of our site could be used for cyberattacks, so watch out

• New WAPDropper malware abuses Android devices for WAP fraud

• TrickBot Gets Updated to Survive Takedown Attempts

• Smart Doorbells Are Wide Open to Security Flaws

• Over 300,000 Spotify Accounts Compromised in Credential-Stuffing Attack

• Hoard Of Spotify User Data Exposed By Hackers’ Careless Security Practices – Experts Reaction

• CEO Reaction On Hackers Trick GoDaddy Employees Into Helping Cyberattacks

• Experts Commenting On Hacker Posts Exploits For Over 49,000 Vulnerable Fortinet VPNs

• Experts Advise To Security Leaders For Computer Security Day – 30 November

• Looks like we’re stuck with Zoom: Is it any safer?

• Matthew Rosenquist and Bikash Barai on Future of Offensive Attack Simulation – Strategies, Tools & Techniques

• Beware of WAPDropper, the mobile malware that subscribes users to Premium Rate Services

• FCW Insider: Nov. 24

• TikTok Patches Bugs Enabling One-Click Account Takeover

• Crooks social-engineered GoDaddy staff to take over crypto-biz domains

• Somfy Tahoma Gateway to Gain HomeKit Support From December 1, 2020

• Security Expert Reaction On Ticktok Patches Reflected XSS Bug That Could Have Been Chained To Hijack Accounts

• Spotify Credential Stuffing Attack

• VMware releases workarounds for another critical flaw (CVE-2020-4006)

• Imagine things are bad enough that you need a payday loan. Then imagine flaws in systems of loan lead generators leave your records in the open… for years

• China pledges collaboration to drive global digital development

• 5 Digital Threats to Watch Out for on Black Friday and Cyber Monday

• Google Faces UK Scrutiny Over New Advertising Data Revamp

• Up to 350,000 Spotify Users Targeted by Credential Stuffers

• Lookalike domains and how to outfox them

• Apple Maps Transit Directions Go Live in Vienna, Austria

• 7 tips for a celebrating virtual holidays this year

• Credential stuffing attack targeted 300K+ Spotify users

• Trying to register your antivirus in Windows Security Center?

• Interview Spotlight: Israeli Hardware Solutions, Sepio Systems

• IoT Unravelled Part 2: IP Addresses, Network, Zigbee, Custom Firmware and Soldering

• Critical Unpatched VMware Flaw Affects Multiple Corporates Products

• IT security under attack blog series: Instant domain persistence by registering a rogue domain controller

• Staggering Cyber Security Statistics Amidst Pandemic Hit Q2 2020

• Ransomware Increase Highlights Need for Better IT, OT Security

• Cloud Compliance Doesn’t Equal Security

• Marketers for an Open Web ask UK competition watchdog to block launch of Google’s anti-tracking Privacy Sandbox

• XDR: Unifying incident detection, response and remediation

• UK MPS face 3 million email cyber attacks every month

• France Banijay Group hit by Ransomware

• How the pandemic has accelerated existing risk trends

• Complex cyber attacks target online retailers

• Achieving a zero-carbon economy requires end to end security

• Podcast Episode 12 – Advocating for Hackers with Chloe Messdaghi

• Lessons From Teaching Cybersecurity: Week 8

• Microsoft Releases Out-of-Band Update for Kerberos Authentication Issues

• Researchers bring deep learning to IoT devices

• IT and data management challenges for 2021

• How to Use Apple’s Built-in Features to Encrypt Files and Folders

• Security flaws in smart doorbells may open the door to hackers

• ISC Stormcast For Tuesday, November 24th 2020 https://isc.sans.edu/podcastdetail.html?id=7266, (Tue, Nov 24th)

• Blue Team Puzzle

• Why IT General Controls Are Important for Compliance and Cybersecurity

• LidarPhone Attack Transforms Smart Vacuum Cleaners Into Spying Tools

• Malware Operators Arrested for Running Services To Bypass Antivirus Software

• Apple’s global security head indicted for bribery charges

• Advice: Protecting Lone Workers Through Covid Restrictions

• ACI Fraud Management now availabe as fully certified private offering on Azure Marketplace

• NICE Actimize IFM-X: Detection capabilities powered by AI and ML

• DDoS Attacks Are Surging Both in Frequency and Sophistication

• CyberArk, Forescout and Phosphorus help orgs secure their IoT devices

• Google Cloud selected by ABB to expand the cloud footprint of its Information System services

• Pentagon tightens workplace restrictions as COVID cases spike

• GSA’s Murphy releases transition funds to Biden

• As ‘Anywhere Work’ Evolves, Security Will Be Key Challenge

• Security Researchers Sound Alarm on Smart Doorbells

• Apple M1 Hands-On Comparison: MacBook Air vs. MacBook Pro vs. Mac Mini

• AvePoint and Apex enter business agreement to accelerate market growth

• How to Sign a PDF Online?

• Google To Add End-to-End Encryption To Android Messages App

• OMB seeks to reclassify workforce under Schedule F

• Ransomware Grows Easier to Spread, Harder to Block

• Video Demos Performance Differences Between 8GB and 16GB Apple M1 MacBook Pro

• The FCC’s Independence and Mission Are at Stake with Trump Nominee

• Crooks social-engineer GoDaddy staff into handing over control of crypto-biz domain names

• IT Security News Daily Summary 2020-11-23

• Azure NetApp Files’ SOC security certification helps customers achieve six secure business goals

• How emerging tech can help the Navy achieve its information superiority vision

• CBP plans broader use of facial recognition

• (adsbygoogle = window.adsbygoogle || []).push({});

• CIA awards massive cloud contract

• State unemployment agencies can use federal funding to reduce potential fraud

• 3 questions every agency should ask about privileged user access

• GoDaddy Employees Tricked into Compromising Cryptocurrency Sites

• Critical VMware Zero-Day Bug Allows Command Injection; Patch Pending

• Malicious Google Play apps caught masquerading as Minecraft mods

• How to conduct an IoT audit for compliance

• Apple Blasts Facebook For “Disregard Of User Privacy”

• Evidence-Based Trust Gets Black Hat Europe Spotlight

• Cyber News Rundown: REvil Ransomware Strikes

• VMware discloses critical zero-day CVE-2020-4006 in Workspace One

• Misinformation or artifact: A new way to think about machine learning

• Apple’s global security boss accused of bribing cops with 200 free iPads in exchange for concealed gun permits

• Azure Resource Owner Password Credentials Flow

• TA416 APT Rebounds With New PlugX Malware Variant

• 10 tips for building a next-generation SOC

• Chinese APT Group Returns to Target Catholic Church & Diplomatic Groups

• Manchester United Suffers Cyberattack

• Speaking at Conferences, 2020 edition

• DHS veteran Mayorkas tapped to lead agency under Biden administration

• FBI Issues Warning of Hackers Spoofing Its Internet Domain

• VMware Releases Workarounds for CVE-2020-4006

• Congress Passes IoT Security Act, but is it Toothless?

• Palo Alto Networks Surfaces AWS API Vulnerabilities

• “Vote Joe’ Website Defaced by Turkish Hackers

• What Are Different Strategies for Security Testing?

• Spotify Users Hit with Rash of Account Takeovers

• TikTok Awards Nearly $4,000 for Account Takeover Vulnerabilities

• US Police Make Arrest in $1m Airplane Scam

• Sumo Logic Finds Attack Surface Expanding

• Computer Security and Data Privacy, the perfect alliance

• Apple Shutting Down App Store Connect From December 23 to December 27

• Apple Extends Deadline Requiring Apps Offering Virtual Group Events to Use In-App Purchases

• Anker’s Black Friday Sale Begins With Many Discounts on Portable Batteries, USB-C Accessories, and More

• Seven Debunked Myths of Cybersecurity

• Brazilian government recovers from “worst-ever” cyberattack

• Tesla Model X hacked and stolen in minutes using new key fob hack

• Manchester United: IT Systems Disrupted in Cyberattack

• Louisiana Hospitals Report Data Breach

• Vulnerability Summary for the Week of November 16, 2020

• DEF CON 28 Safe Mode Voting Village Village -Steve Newell’s ‘Leveraging Electronic Balloting Options In COVID’

• Researchers show how to steal a Tesla Model X in a few minutes

• IoT security: how Microsoft protects Azure Datacenters

• How Can Someone Can Hack Your Phone Without Touching It?

• A Step-by-Step Guide to Help You Manage Your Employees

• Imminent Threat for US Hospitals and Clinics, RYUK Ransomware Alert (AA20-302A)

• Facebook Messenger Bug Could Allow Spying On Users Via Audio

• Football Club Manchester United Confirms Cyber Attack

• Joe Biden Campaign Subdomain Down After Hacktivist Defacement

• Two Romanians Arrested for Running Malware Encryption Services

• Anonymous Hacks Uganda Police Website

• Axis Security Chosen 2020 Red Herring Top 100 North America Winner

• Cyber is as Much Psychology as it is Technology

• Black Friday Spotlight: Target Begins Week-Long Sale With Deals on iPhone 12, Powerbeats Pro, and More

• iPad Pro Said to Adopt OLED Displays in Late 2021 Following Mini-LED Model in Early 2021

• Experts Insight On Android Users Could Spy On Others Using Facebook Messenger

• Multilingual Cybersecurity Awareness Training adapted for your needs

• Apple iCloud leaks photos of British Athletes without clothes

• Tech Resume Library: 21 downloadable templates for IT pros

• Instagram Privacy Refresh | Avast

• Malware creates scam online stores on top of hacked WordPress sites

• Penetration testing isn’t enough, you need to activate full offensive operations

• New ‘LidarPhone’ Attack Uses Robot Vacuum Cleaners for Eavesdropping

• Attack on Vendor Affects Website of Arizona Court System

• Choosing the Right Threat Intelligence Mix

• 3 Steps CISOs Can Take to Convey Strategy for Budget Presentations

• TikTok fixed security issues that could have led one-click account takeover

• Waze Integration With CarPlay Dashboard in Beta Testing

• India and China Border Briefer: The Shadow of Article 370’s Revocation

• Lock and Code S1Ep20: Tracking the charities that track you online with Chris Boyd

• Remote work and how 2020 changed our lives for good

• BrandPost: Fortinet Connects Military Spouses with Meaningful Careers in Tech

• Shadow IT: Addressing the Risks in Remote Work Environments

• GoDaddy staff fall prey to social engineering scam in cryptocurrency exchange attack wave

• Researchers Show Tesla Model X Can Be Stolen in Minutes

• Naked Security Live – Beat the Threat!

• A Fifth of Consumers Affected by Identity Fraud in 2020

• How Retailers Can Fight Fraud and Abuse This Holiday Season

• Digital Shadows Launches Sensitive Document Alerts With Added Context

• Smart Doorbells Are Easy Targets For Hackers

• TikTok Patches XSS And Account Takeover Exploit

• GitHub Fixes High Severity Security Flaw Spotted By Google

• Attackers Dupe GoDaddy Staff Into Helping Them Take Down Cryptocurrency Services

• Sonos Discounting Speakers, Sound Bars, and More for Black Friday (Up to $200 Off)

• Expert Insights: Faith App Pray.com Exposes Millions Through Cloud Misconfiguration

• CEO Reacted On Europol Reveals That Criminals Are Using Ai For Malicious Purposes, And Not Just For Deep Fakes

• Latest Microsoft MFA Advice Is Not Enough To Protect Organisations

• 8 Resolutions For A More Secure And Rewarding New Year

• Experts Reaction On Verizon Cyber-Espionage Report

• Why Data Recovery Services Are Still In Demand Nowadays

• Windows 10X – What Should You Know About It?

• 7 Ways to Improve Your Web Application Security Against Cybercrime in 2020

• Make the Most of Social Gaming in This Pandemic with Trivia Board Games

• BrandPost: Examining the Top Cyberthreats Plaguing the Pharmaceutical Industry

• Black Friday security tips: Beware of websites that want too much info

• Canada PM Refuses to Commit to Huawei 5G Decision Timetable

• #COVID19 Drives Massive Multi-Cloud Adoption

• 11 Smart Video Doorbells Could Let Hackers Into Your Home

• Experts Reacted On MPs Hit With Nearly 3 Million Malicious Emails Every Month

• Private pictures of female British athletes posted online after cyberattacks

• (adsbygoogle = window.adsbygoogle || []).push({});

• Korean Retailer suffers Ransomware attack

• Manchester United suffer cyberattack

• FEITIAN + Duo Integration Supports the Broadest Range of MFA Options

• Cisco Webex Vulnerabilities Could Expose Meetings To Ghost Users

• VoltPillager Attack Can Manipulate Intel CPUs’ Secure SGX Enclaves

• Android App GO SMS Pro Exposed Users’ Private Messages Publicly

• The Link Between Text Messaging and Effective Hacking

• Will Privacy Kill the Open Web?

• Online scams: How Safe Are the Websites You Visit?

• Be Prepared for Increased DDoS Attacks Ahead of Black Friday

• TikTok patches reflected XSS bug, one-click account takeover exploit

• Subdomain of Official Joe Biden Campaign Website Defaced by Turkish Hacker

• Manchester United Calls in Experts to Investigate Targeted Cyber-Attack on Its Systems

• 10 Undergraduate Security Degree Programs to Explore

• This Bluetooth Attack Can Steal a Tesla Model X in Minutes

• VMware fixed SD-WAN flaws that could allow hackers to target enterprise networks

• More on the Security of the 2020 US Election

• iPhone Assembler Pegatron Reportedly Readies $150m Investment in India

• US Air Force deploys robot security dogs to guard base but doesn’t go full Terminator

• Do you have a security tools gap?

• Top COVID-19 security statistics

• GitHub fixes ‘high severity’ security flaw spotted by Google

• NCSC Issues Warning About Expected #BlackFriday Scams

• Google Rolls Out End-to-End Encryption for Android Messages

• How Scanners Find Vulnerabilities

• Microsoft & Google Impersonation Attacks Are on the Rise – How to Stay Safe

• Biden’s top tech adviser makes regulation more likely

• FCW Insider: Nov. 23

• Quick Hits

• MPs Bombarded by Nearly Three Million Monthly Email Attacks

• Apple Offering Up to $150 Gift Card With Select Products on Black Friday Through Cyber Monday

• No Xmas office party? Missing infosec pals and colleagues? Want to listen to DJs who also happen to be cyber warriors?

• Panda Security teams up with Peter Andre to promote child safety online

• Hackers Target Manchester United: Club

• Ransomware Suspected in Man United Attack

• FBI issued an alert on Ragnar Locker ransomware activity

• Quick Tip: Cobalt Strike Beacon Analysis, (Mon, Nov 23rd)

• Twitter Bug Lets Fleets Be Viewed and Downloaded Long After Expiration

• Drupal-based sites open to attack via double extension files (CVE-2020-13671)

• IoT Unravelled Part 1: It’s a Mess… But Then There’s Home Assistant

• Why Replace Traditional Web Application Firewall (WAF) With New Age WAF?

• New Study Says Cyber Security Technology Isn’t as Effective As It Should Be

• Now’s the Time to Revisit WFH Cybersecurity

• Massive threat campaign strikes open-source repos, Sonatype spots new CursedGrabber malware

• Safari Translation Feature Reportedly Working in Additional Countries

• Want to certify your security software with an internationally recognized testing organization?

• Four easy steps for organizations to hand over data control

• Head thumping, heart racing? Here’s how not to panic when you’re under cyber attack

• Cyber Attack on Football Club Manchester United

• CISA Director Chris Krebs Fired, Common Sense and Section 230

• Even the world’s freest countries aren’t safe from internet censorship

• Companies rely on crowdsourced security to boost security efforts

• Google Cloud adds new Network Security features

• OAIC has fielded zero complaints and received no reported COVIDSafe breaches

• From Alan Turing to Future Artificial Intelligences – Reading Security Signals

• Apple-Notarized Malware: What It Is and How It Affects Mac Users

• What is the future of working professional education?

• Organizations plan to use AI and ML to tackle unknown attacks faster

• Learning The [Defence] Ropes 101 – Splunk Setup & Config

• Facebook Messenger Bug Let Android Users Spy On Each Other

• Monash University and The Alfred to develop AI-based superbug detection system

• eBook: Secure Software Development

• ISC Stormcast For Monday, November 23rd 2020 https://isc.sans.edu/podcastdetail.html?id=7264, (Mon, Nov 23rd)

• CynergisTek API Sentry: Helping healthcare organizations manage API-related risks

• Election Cyber Threats in the Asia-Pacific Region

• The State Laws Governing Trump’s Power Grab in Michigan

• ScaleMP improves infrastructure efficiency and reduces TCO for Cloud and Data Center customers

• Experian acquires Tapad to enhance digital offerings for advertisers, agencies and publishers

• Accenture acquires Arca to help clients unlock the full potential of 5G

• Living with COVID-19 creates a privacy dilemma for us all

• Quick Tip: Extracting all VBA Code from a Maldoc – JSON Format, (Sun, Nov 22nd)

• Black Friday Week Kicks Off With Up to $150 Savings on 2020 iPad Pro

• Apple Provides Instructions to Fix macOS Reinstallation Errors on M1 Macs

• (ISC)² appoints Lisa Young to its Board of Directors

• ICANN Can Stand Against Censorship (And Avoid Another .ORG Debacle) by Keeping Content Regulation and Other Dangerous Policies Out of Its Registry Contracts

• IT Security News Weekly Summary – Week 47

• IT Security News Daily Summary 2020-11-22

• DEF CON 28 Safe Mode Voting Village Village -Jody Westby’s ‘Policy Approach To Resolving Cybersecurity Problems’

• DEF CON 28 Safe Mode Voting Village Village – Stark Xie’s ‘Testing Can’t Tell If Ballot Devices Alter Elections’

• Robert M. Lee’s & Jeff Haas’ Little Bobby Comics – ‘WEEK 304’

• Threat actor shared a list of 49,577 IPs vulnerable Fortinet VPNs

• Rumor Claims iOS 15 to Drop Support for iPhone 6s and Original iPhone SE

• No Shortcuts to Negotiating With al-Shabaab

• A biochemical random number

• Manchester United Hit By a Cyber Attack on their Systems

• WhatsApp’s ‘disappearing messages’ now available for Indian users; here’s how you can enable disappearing messages on your WhatsApp

• Google Is Testing End-to-End Encryption in Android Messages

• Hundreds of female sports stars and celebrities have their naked photos and videos leaked online

• NIST Updates Control Baselines, Integrates Privacy

• Securing Beats at Scale

• Security Affairs newsletter Round 290

• Romanians arrested for running underground malware services

• A cyberattack crippled the IT infrastructure of the City of Saint John

• Universal Electronics Offers Alternative Apple TV Remote to Cable Companies

• iFixit Shares iPhone 12 Pro Max Teardown Revealing L-Shaped Battery and Bigger Camera Module

• Week in review: Kali Linux 2020.4, AWS Network Firewall, speeding up malware analysis

• (adsbygoogle = window.adsbygoogle || []).push({});

Generated on 2020-11-29 23:58:21.730841

The post See source