SBS CyberSecurity - In The Wild 114

In The Wild - CyberSecurity Newsletter Welcome to the 114th issue of In The Wild, SBS’ weekly CyberSecurity newsletter. The objective of this newsletter is to share threat intelligence, news articles that are relevant, new and updated guidance, and other information you may find helpful. Below, you will find some of the latest-and-greatest news stories, articles, videos, and links from the past week in cybersecurity. Some of the following have been shared by consultants, others by the SBS Institute, and others yet simply been found in the far corners of the Internet. We hope you find the following stories relevant, interesting, and – most of all – useful. Enjoy. SOC 2 vs. SOC for Cybersecurity Reports SBS CyberSecurity Blog If you’ve been involved in any sort of vendor review process at your organization, you’ve surely heard of or had the pleasure to review a SOC (System and Organization Controls) Report. There are actually a variety of different types of SOC reports, including SOC 1, SOC 2, and SOC 3, as well as the newest member of the team – the SOC for Cybersecurity. While each report has its own purpose, we’re going to dive into the difference between the SOC 2 and SOC for Cybersecurity reports. Read Here »   Julian Assange Arrested as U.S. Unseals Hacking Conspiracy Indictment The New York Times The WikiLeaks founder Julian Assange was arrested on Thursday in London to face a charge in the United States of conspiring to hack into a Pentagon computer network in 2010, bringing to an abrupt end a seven-year saga in which he had holed up in Ecuador’s embassy in Britain to avoid capture. Read Here »   Android 7.0+ Phones Can Now Double as Google Security Keys Krebs on Security Google this week made it easier for Android users to enable strong 2-factor authentication (2FA) when logging into Google’s various services. The company announced that all phones running Android 7.0 and higher can now be used as Security Keys, an additional authentication layer that helps thwart phishing sites and password theft. Read Here »   DHS, FBI: Election Systems in All 50 States Were Targeted in 2016 ars technica A joint intelligence bulletin (JIB) has been issued by the Department of Homeland Security and Federal Bureau of Investigation to state and local authorities regarding Russian hacking activities during the 2016 presidential election. While the bulletin contains no new technical information, it is the first official report to confirm that the Russian reconnaissance and hacking efforts in advance of the election went well beyond the 21 states confirmed in previous reports. Read Here »   Do you know which SBS Institute Certification Programs are coming up? Check out the Certification Calendar and share with your clients. Find Out Here! » SAS 2019: Triton ICS Malware Hits A Second Victim threatpost The Triton malware, which first came to light after a disruptive critical-infrastructure attack on Saudi oil giant Petro Rabigh in 2017, has found a second victim. According to researchers at FireEye, the cybercriminals behind Triton, also called Trisis, have once again targeted industrial control systems (ICS), this time at an undisclosed company in the Middle East. Further, FireEye has taken the additional step of linking Triton with high confidence to Russian state-sponsored hackers. Read Here »   Cybercrime Market Selling Full Digital Fingerprints of Over 60K Users ZDNet Today, at the Kaspersky Security Analyst Summit conference taking place in Singapore, security researchers from Kaspersky Lab have revealed the existence of a new cybercrime marketplace where crooks are selling full digital fingerprints for over 60,000 users. This new marketplace is like nothing that has ever been seen on the hacking scene until now. Named Genesis, the service launched in the fall of 2018, when its creators began advertising it as a "secondary/related service" on several carding forums (forums where cyber-criminals sell stolen payment card details). Read Here »   Proposed Bill Provides Cybersecurity Grants to State and Local Governments State Scoop U.S. Sens. Mark Warner and Cory Gardner introduced legislation Monday that would authorize the Department of Homeland Security to give state and local governments grants to purchase additional cybersecurity resources and hire more information-security personnel. Under the State Cyber Resiliency Act, state, local and tribal governments would be invited to put together plans to improve their overall defenses around their computer networks, communications systems, and industrial control systems, such as internet-connected devices that operate environmental sensors and other “smart city” platforms. Read Here »   10 Simple Ways to Spring Clean Your Inbox Inc.com Between sifting through spam, crafting the right responses, and keeping tabs on the messages that require follow-up, staying on top of your inbox can feel like a job in itself. That's why we picked the brains of professionals who have figured out the secret to efficient, organized inboxes--despite getting hundreds of emails a day. Because having a system in place can help you conquer even the most unruly inbox. Read Here » Other Interesting Links From This Week There were too many fantastic reads from this past weeks’ worth of cybersecurity and technology news, so here are a few additional quick-hit links for your reading pleasure: ·         The Verge: Microsoft reveals hackers accessed some Outlook.com accounts for months ·         Tech Crunch: How to stop robocalls spamming your phone ·         Bleeping Computer: Malware Creates Cryptominer Botnet Using EternalBlue and Mimikatz ·         Bleeping Computer: Sextortion Scammers Change Tactics to Bypass Spam Protection ·         The Hacker News: Security Flaws in WPA3 Protocol Let Attackers Hack WiFi Password ·         CSO Online: Cybercrime groups raise the bar for security teams by borrowing APT techniques ·         ZDNet: TajMahal cyber-espionage campaign uses previously unseen malicious tools ·         Bloomberg: Amazon Workers Are Listening to What You Tell Alexa ·         BankInfoSecurity: FIN6 Shifts From Payment Card Theft to Ransomware