Logo Cyber News
Logo Dorin M Wolf
 
Cybersecurity news of the week (09.12.2021). (to the original material)
 
- The Worst Passwords in the last decade (and new ones you shouldn’t use). (to the original material)
 
Cisco releases security advisory for multiple products affected by Apache HTTP Server vulnerabilities. (to the original material)
 
CISA releases guidance on protecting Organization-Run Social Media accounts. (to the original material)
 
- Kali Linux 2021.4 Released: Wider Samba Compatibility, The Social-Engineer Toolkit, new tools, and more. (to the original material)
 
- Kali Linux 2021.4 was released with 9 new tools, further Apple M1 support. (to the original material)
 
QNAP NAS devices targeted by new bitcoin miner. (to the original material)
 
It's time to patch your SonicWall SMA 100 series appliance again. (to the original material)
 
Extracting value from the interconnected network of risk management. (to the original material)
 
Burned-out workers are less likely to follow security guidelines. (to the original material)
 
Top practices to improve enterprise security. (to the original material)
 
What cybersecurity trends do CEOs expect to see next year. (to the original material)
 
Sophisticated identity document fraud increased by 57% over previous year. (to the original material)
 
How can organizations ease audit overload? (to the original material)
 
- Beware of ransomware attacks between Christmas and New Year's! (to the original material)
 
Threat sources newsletter (December 9, 2021). (to the original material)
 
SnapHack: Watch out for those who can hack into anyone's Snapchat. (to the original material)
 
Malicious Notepad++ installers push StrogPity malware. (to the original material)
 
Dark Mirai botnet targeting RCE on popular TP-Link router. (to the original material)
 
Microsoft, Google 0Auth can be abused in phishing attacks. (to the original material)
 
Microsoft is previewing the new endpoint security solution for SMEs. (to the original material)
 
Cox (Cox Communications a.k.a. Cox Cable, telecommunications company and digital cable provider) discloses data breach after hacker impersonates support agent. (to the original material)
 
- SanDisk SecureAccess bug allows brute force forcing vault passwords. (to the original material)
 
Fujitsu pins Japanese government data breach on stolen ProjectWeb accounts. (to the original material)
 
Hundreds of thousands of MikroTik devices still vulnerable to botnets. (to the original material)
 
Windows "InstallerFileTakeOver" zero-day bug gets free micropatch. (to the original material)
 
Mapping the MikroTik attack surface (or why your home office may have DDoSed a Russian search engine - Yandex). (to the original material)
 
- Medical devices security can't be solved in the field of healthcare: What's "acceptable risk?". (to the original material)
 
New compliance platform gets boost from JP Morgan Private Capital. (to the original material)
 
Adversary emulation tutorial showcases benefits of red teams using real-world TTPs. (to the original material)
 
NIST will ping industry early next year on new supply chain security guidance. (to the original material)
 
ALPHV BlackCat - The year's most sophisticated ransomware. (to the original material)
 
Verdict reached in Josh Duggar (cyberstalker of sexually abused minors) case. (to the original material)
 
DARPA (Defence Advanced Research Project Agency) announces SMOKE (Signature Management Using Operational Knowledge and Environments) program. (to the original material)
 
Most phishing pages are short-lived. (to the original material)
 
- Half of websites still using legacy crypto keys. (to the original material)
 
NVD (National Vulnerability Database - USA): It's another record year for vulnerabilities. (to the original material)
 
IT executives half as likely to face the "axe" after breaches. (to the original material)
 
The government is close to picking quantum-resistant encryption standards. Now it must plan for what to do if they fail. (to the original material)
 
17 Discord malware packages found in NPM repository. (to the original material)
 
Beyond backup: Modern ransomware coercion tactics and how to detect them before it's too late. (to the original material)
 
The evolution of IoT Linux malware based on MITRE ATT&CK TTPs. (to the original material)
 
Saudi human rights activist, represented by EFF, sues spyware maker DarkMatter for violating U.S. anti-hacking and international human rights laws. (to the original material)
 
Virtual worlds, real people: human rights in the Metaverse. (to the original material)
 
Chrome users beware: Manifest V3 is deceitful and threatening. (to the original material)
 
Newspapers versus Big Tech: Antitrust tackles the problems that copyright just can't fix. (to the original material)
 
The power of real-time capabilities for communication service providers. (to the original material)
 
- Schrems vs. DPC battle heats up, as new document suggests Irish privacy body tried to weaken GDPR. (to the original material)

- Interview with Franco De Bonis – VISUA. (to the original material)

- Interview with Ziv Cohen – Paygilant. (to the original material)

 

Logo Dorin M Wolf

No comments