SBS CyberSecurity - In The Wild 225

 

SBS Newsletter header

 

In The Wild - CyberSecurity Newsletter

Welcome to the 225th   issue of In The Wild, SBS' weekly CyberSecurity newsletter. The objective of this newsletter is to share threat intelligence, news articles that are relevant, new and updated guidance, and other information to help you make better cybersecurity decisions.

Below, you will find some of the latest-and-greatest news stories, articles, videos, and links from the past week in cybersecurity. Some of the following stories have been shared by consultants, others by the SBS Institute, and others yet simply been found in the far corners of the internet. We hope you find the following stories relevant, interesting, and – most of all – useful. Enjoy.

Follow SBS CyberSecurity on Social Media for more articles, stories, news, and resources!

         

{TIP SHEET} INVESTIGATING PHISHING EMAILS

SBS Educational Resources

If your organization is notified that emails are being sent that appear to come from you or an employee of your organization, the process outlined in this download can be useful in determining if the email is spoofed or if you have a compromised email account. Download the free tip sheet.

Read Here »  

Boss of ATM Skimming Syndicate Arrested in Mexico

Krebs on Security

Florian “The Shark” Tudor, the alleged ringleader of a prolific ATM skimming gang that siphoned hundreds of millions of dollars from bank accounts of tourists visiting Mexico over the last eight years, was arrested in Mexico City on Thursday in response to an extradition warrant from a Romanian court.

Read Here »  

Try These Best Practices to Counter Common Cybersecurity Risks

Security Intelligence

Let’s look at some of those best practices you can use to assess and control today’s risks.

Read Here »  

How Are Cyber Insurance Companies Assessing Ransomware Risk?

Dark Reading

From limiting claims payments to tying payments to policyholders' actions, the cyber insurance industry is in "a very dynamic place right now," says Corvus Insurance CEO Phil Edmundson.

Read Here »  

Do you know which SBS Institute Certification Programs are coming up? Check out the Certification Calendar and share with your clients. Find Out Here! »

Researchers find four new malware tools created to exploit Pulse Secure VPN appliances

ZDNet

There are now at least 16 malware families designed to compromise Pulse Secure VPN products.

Read Here »  

The Colonial Pipeline Ransomware Hackers Had a Secret Weapon: Self-Promoting Cybersecurity Firms

ProPublica

Five months before DarkSide attacked the Colonial pipeline, two researchers discovered a way to rescue its ransomware victims. Then an antivirus company’s announcement alerted the hackers.

Read Here »  

New Epsilon Red ransomware hunts unpatched Microsoft Exchange servers

BleepingComputer

A new ransomware threat calling itself Red Epsilon has been seen leveraging Microsoft Exchange server vulnerabilities to encrypt machines across the network.

Read Here »  

Memorial Day Traditions - 10 Powerful Traditions to Show Pride

USMemorialDay.Org

Make sure to honor these brave soldiers by doing these ten powerful traditions on Memorial Day.

Read Here »

10 Other Interesting Links From This Week

There were too many fantastic reads from this past weeks' worth of cybersecurity and technology news, so here are a few additional quick-hit links for your reading pleasure:

*     Krebs on Security: Using Fake Reviews to Find Dangerous Extensions

*     ZDNet: FBI issues warning about Fortinet vulnerabilities after APT group hacks local gov’t office

*     The Hacker News: Critical RCE Vulnerability Found in VMware vCenter Server — Patch Now!

*     ISACA: Study Finds Cybersecurity Workforce Minimally Impacted by Pandemic, but Still Grappling with Persistent Hiring Challenges

*     TechRepublic: Biden executive order bets big on zero trust for the future of US cybersecurity

*     HealthcareITNews: Scripps CEO says attack was ransomware

*     SecurityIntellligence: Ryuk Ransomware Operators Shift Tactics to Target Victims

*     ThreatPost: Hackers Exploit Post-COVID Return to Offices

*     BleepingComputer: Ransomware gangs' slow decryptors prompt victims to seek alternatives

*     BleepingComputer: FBI to share compromised passwords with Have I Been Pwned

Comments

Popular posts from this blog

KnowBe4 - Scam Of The Week: "When Users Add Their Names to a Wall of Shame"

Krebs - NY Charges First American Financial for Massive Data Leak

US-CERT - SB18-169: Vulnerability Summary for the Week of June 11, 2018