SBS CyberSecurity - In The Wild 261

 

In The Wild - CyberSecurity Newsletter Welcome to the 261st  issue of In The Wild, SBS' weekly CyberSecurity newsletter. The objective of this newsletter is to share threat intelligence, news articles that are relevant, new and updated guidance, and other information to help you make better cybersecurity decisions. Below, you will find some of the latest-and-greatest news stories, articles, videos, and links from the past week in cybersecurity. Some of the following stories have been shared by consultants, others by the SBS Institute, and others yet simply been found in the far corners of the internet. We hope you find the following stories relevant, interesting, and – most of all – useful. Enjoy. Follow SBS CyberSecurity on Social Media for more articles, stories, news, and resources!           Hacker Hour: Completing the Ransomware Self-Assessment Tool SBS Educational Resources Date: Wednesday, February 16, 2022 Time: 2:00-3:00 PM CT On October 12, 2020, the Conference of State Bank Supervisors (CSBS), in conjunction with the Bankers Electronic Crimes Task Force (BECTF) and the U.S. Secret Service, introduced a new Ransomware Self-Assessment Tool (R-SAT) for financial institutions to aid in the effects of a ransomware attack. Since then, many state regulators have recommended or required their financial institutions to complete the assessment. Join SBS as we walk through the R-SAT and discuss how you can get more familiar with the tool. Read Here »   How Phishers Are Slinking Their Links Into LinkedIn KrebsOnSecurity If you received a link to LinkedIn.com via email, SMS or instant message, would you click it? Spammers, phishers and other ne’er-do-wells are hoping you will. Read Here »   Cybersecurity-Many managers just don't want to understand the risks ZDNet Some senior execs have their heads in the sand when it comes to cybersecurity - and it might take falling victim to a cyberattack for that issue to be fixed. Read Here »   CISA adds 8 vulnerabilities to list of actively exploited bugs BleepingComputer Update now as the US Cybersecurity & Infrastructure Security Agency (CISA) has added eight more flaws to its catalog of exploited vulnerabilities that are known to be used in attacks, and they’re a mix. Read Here »   Do you know which SBS Institute Certification Programs are coming up? Check out the Certification Calendar and share with your clients. Find Out Here! » Ransomware-Over half of attacks are targeting these three industries ZDNet Three sectors have been the most common target for ransomware attacks, but researchers warn "no business or industry is safe" Read Here »   Zelle scammers want to steal your cash. Here are 5 ways they’re doing it Elliott Advocacy Zelle users beware: Scammers have their sights aimed straight at you. That’s right – the money transfer service has quickly become the preferred method of thieves everywhere looking for instant gratification. Read Here »   Kronos Still Dragging Itself Back From Ransomware Hell Threatpost And customers including Tesla, PepsiCo and NYC transit workers are filing lawsuits over the “real pain in the rear end” of manual inputting, inaccurate wages & more. Read Here »   How To Become A Better Manager In 2022 Forbes Being a manager these days is no easy task. But it is a critical function. According to a recent Gallup survey, 70% of a team's engagement depends on the manager. Read Here » 10 Other Interesting Links From This Week There were too many fantastic reads from this past weeks' worth of cybersecurity and technology news, so here are a few additional quick-hit links for your reading pleasure:      DARKReading: The Real-World Impact of the Global Cybersecurity Workforce Gap on Cyber Defenders      DARKReading: Phishing Simulation Study Shows Why These Attacks Remain Pervasive      The Hacker News: New Malware Used by SolarWinds Attackers Went Undetected for Years      Threatpost: Low-Detection Phishing Kits Increasingly Bypass MFA      Nextgov: What It Will Take for NIST, CISA and OMB to Align on Zero Trust      Infosecurity: CVSS 9.9-Rated Samba Bug Requires Immediate Patching      ZDNet: Strong authentication protects against phishing. So why aren't more people using it?      Global Cyber Alliance: Free Cybersecurity Toolkit for Mission-Based Organizations      BleepingComputer: Microsoft blocked billions of brute-force and phishing attacks last year      BleepingComputer: FBI shares Lockbit ransomware technical details, defense tips