SBS CyberSecuity - In The Wild 265

 

In The Wild - CyberSecurity Newsletter Welcome to the 265th  issue of In The Wild, SBS' weekly CyberSecurity newsletter. The objective of this newsletter is to share threat intelligence, news articles that are relevant, new and updated guidance, and other information to help you make better cybersecurity decisions. Below, you will find some of the latest-and-greatest news stories, articles, videos, and links from the past week in cybersecurity. Some of the following stories have been shared by consultants, others by the SBS Institute, and others yet simply been found in the far corners of the internet. We hope you find the following stories relevant, interesting, and – most of all – useful. Enjoy. Follow SBS CyberSecurity on Social Media for more articles, stories, news, and resources!           CyberSecurity Through Global Conflict SBS Educational Resources This conflict and the immediate increase in suspected Russian-sourced cyber-attacks have brought heightened awareness to the topic of cybersecurity and cyber warfare, resulting in many organizations asking the question, "Are we doing enough to protect our company from an attack?" Read Here »   7 Pressing Cybersecurity Questions Boards Need to Ask Harvard Business Review In this article we offer 7 questions to ask to make sure your board understands how cybersecurity is being managed by your organization. Simply asking these questions will also raise awareness of the importance of cybersecurity, and the need to prioritize action. Read Here »   7 mistakes CISOs make when presenting to the board CSO Effectively communicating cybersecurity to the most senior organizational stakeholders is essential. Here's how to overcome the most common mistakes CISOs make when presenting to a board. Read Here »   NSA report: This is how you should be securing your network ZDNet US spy agency NSA has given its most up-to-date guidance for protecting networks against attacks. Read Here »   Do you know which SBS Institute Certification Programs are coming up? Check out the Certification Calendar and share with your clients. Find Out Here! » CISA warns organizations to patch 95 actively exploited bugs BleepingComputer The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added 95 vulnerabilities to its list of actively exploited security issues, the largest number since issuing the binding operational directive (BOD) last year. Read Here »   Expeditors outlines severity of cyberattack, partially resumes operations FreightWaves Expeditors International, a top-five freight management company by revenue, disclosed Wednesday that last month’s cyberattack will have a “material adverse impact” on finances and that it will be late filing its 2021 annual report because of difficulty accessing information on its accounting systems. Read Here »   8-Character Passwords Can Be Cracked in Less than 60 Minutes DARKReading Researchers say passwords with less than seven characters can be hacked "instantly." Read Here »   8 Habits Every First-Time Manager Should Embrace Hive Managing a team requires trial and error, and there is nothing quite like learning through practice. You’re going to need to embrace a whole new set of habits to go with your new role. Read Here » 10 Other Interesting Links From This Week There were too many fantastic reads from this past weeks' worth of cybersecurity and technology news, so here are a few additional quick-hit links for your reading pleasure:      KrebsOnSecurity: Conti Ransomware Group Diaries, Part I: Evasion      KrebsOnSecurity: Conti Ransomware Group Diaries, Part II: The Office      KrebsOnSecurity: Conti Ransomware Group Diaries, Part III: Weaponry      DARKReading: Most Cybersecurity Vendors at Risk Due to Internet-Exposed IT Assets      ZDNet: We're all still using the same passwords, even after they've been breached      CNN: Senate passes major cybersecurity legislation to force reporting of cyberattacks and ransomware      BleepingComputer: The Week in Ransomware - March 4th 2022 - The Conti Leaks      BleepingComputer: Attacks abusing programming APIs grew over 600% in 2021      The Hacker News: Nearly 75% of Infusion Pumps Affected by Severe Vulnerabilities      Tech Crunch: How a simple security bug became a university campus ‘master key’