SBS CyberSecurity - In The Wild 225

 

In The Wild - CyberSecurity Newsletter Welcome to the 225th   issue of In The Wild, SBS' weekly CyberSecurity newsletter. The objective of this newsletter is to share threat intelligence, news articles that are relevant, new and updated guidance, and other information to help you make better cybersecurity decisions. Below, you will find some of the latest-and-greatest news stories, articles, videos, and links from the past week in cybersecurity. Some of the following stories have been shared by consultants, others by the SBS Institute, and others yet simply been found in the far corners of the internet. We hope you find the following stories relevant, interesting, and – most of all – useful. Enjoy. Follow SBS CyberSecurity on Social Media for more articles, stories, news, and resources!           {TIP SHEET} INVESTIGATING PHISHING EMAILS SBS Educational Resources If your organization is notified that emails are being sent that appear to come from you or an employee of your organization, the process outlined in this download can be useful in determining if the email is spoofed or if you have a compromised email account. Download the free tip sheet. Read Here »   Boss of ATM Skimming Syndicate Arrested in Mexico Krebs on Security Florian “The Shark” Tudor, the alleged ringleader of a prolific ATM skimming gang that siphoned hundreds of millions of dollars from bank accounts of tourists visiting Mexico over the last eight years, was arrested in Mexico City on Thursday in response to an extradition warrant from a Romanian court. Read Here »   Try These Best Practices to Counter Common Cybersecurity Risks Security Intelligence Let’s look at some of those best practices you can use to assess and control today’s risks. Read Here »   How Are Cyber Insurance Companies Assessing Ransomware Risk? Dark Reading From limiting claims payments to tying payments to policyholders' actions, the cyber insurance industry is in "a very dynamic place right now," says Corvus Insurance CEO Phil Edmundson. Read Here »   Do you know which SBS Institute Certification Programs are coming up? Check out the Certification Calendar and share with your clients. Find Out Here! » Researchers find four new malware tools created to exploit Pulse Secure VPN appliances ZDNet There are now at least 16 malware families designed to compromise Pulse Secure VPN products. Read Here »   The Colonial Pipeline Ransomware Hackers Had a Secret Weapon: Self-Promoting Cybersecurity Firms ProPublica Five months before DarkSide attacked the Colonial pipeline, two researchers discovered a way to rescue its ransomware victims. Then an antivirus company’s announcement alerted the hackers. Read Here »   New Epsilon Red ransomware hunts unpatched Microsoft Exchange servers BleepingComputer A new ransomware threat calling itself Red Epsilon has been seen leveraging Microsoft Exchange server vulnerabilities to encrypt machines across the network. Read Here »   Memorial Day Traditions - 10 Powerful Traditions to Show Pride USMemorialDay.Org Make sure to honor these brave soldiers by doing these ten powerful traditions on Memorial Day. Read Here » 10 Other Interesting Links From This Week There were too many fantastic reads from this past weeks' worth of cybersecurity and technology news, so here are a few additional quick-hit links for your reading pleasure:      Krebs on Security: Using Fake Reviews to Find Dangerous Extensions      ZDNet: FBI issues warning about Fortinet vulnerabilities after APT group hacks local gov’t office      The Hacker News: Critical RCE Vulnerability Found in VMware vCenter Server — Patch Now!      ISACA: Study Finds Cybersecurity Workforce Minimally Impacted by Pandemic, but Still Grappling with Persistent Hiring Challenges      TechRepublic: Biden executive order bets big on zero trust for the future of US cybersecurity      HealthcareITNews: Scripps CEO says attack was ransomware      SecurityIntellligence: Ryuk Ransomware Operators Shift Tactics to Target Victims      ThreatPost: Hackers Exploit Post-COVID Return to Offices      BleepingComputer: Ransomware gangs' slow decryptors prompt victims to seek alternatives      BleepingComputer: FBI to share compromised passwords with Have I Been Pwned