SBS CyberSecurity - In The Wild 266

In The Wild - CyberSecurity Newsletter Welcome to the 266th  issue of In The Wild, SBS' weekly CyberSecurity newsletter. The objective of this newsletter is to share threat intelligence, news articles that are relevant, new and updated guidance, and other information to help you make better cybersecurity decisions. Below, you will find some of the latest-and-greatest news stories, articles, videos, and links from the past week in cybersecurity. Some of the following stories have been shared by consultants, others by the SBS Institute, and others yet simply been found in the far corners of the internet. We hope you find the following stories relevant, interesting, and – most of all – useful. Enjoy. Follow SBS CyberSecurity on Social Media for more articles, stories, news, and resources!           Hacker Hour: Top 5 IT Exam Recommendations SBS Educational Resources IT audits or exams are a vital measurement for an organization. They ensure that the company continues to mature and achieve compliance but, more importantly, adopt a proactive security mindset. SBS is fortunate to work with thousands of institutions and we see a wide range of exam/audit findings. This session will cover the top five exam recommendations and open the discussion about what other findings are popping up around the country. Please join us and share your experience with hundreds of other security professionals. Read Here »   FBI Alert: Ransomware Attacks Hit Critical Infrastructure Organizations DARKReading The FBI issued a warning this week that the RagnarLocker ransomware has infected some 52 organizations in manufacturing, energy, financial services, government, and information technology so far this year. Read Here »   Russia May Use Ransomware Payouts to Avoid Sanctions’ Financial Harm Threatpost FinCEN warns financial institutions to be ware of unusual cryptocurrency payments or illegal transactions Russia may use to ease financial hurt from Ukraine-linked sanctions. Read Here »   Breaking Russia's internet backbone ZDNet Lumen joins Cogent in cutting off Russia's main internet connections. Read Here »   Do you know which SBS Institute Certification Programs are coming up? Check out the Certification Calendar and share with your clients. Find Out Here! » SEC wants public companies to report breaches within four days BleepingComputer The US Securities and Exchange Commission (SEC) has proposed rule amendments to require publicly traded companies to report data breaches and other cybersecurity incidents within four days after they're determined as being a material incident (one that shareholders would likely consider important). Read Here »   Fraud Is Flourishing on Zelle. The Banks Say It’s Not Their Problem: The New York Times Zelle, the payments platform used by millions of customers, is a popular target of scammers. But banks have been reluctant to make fraud victims whole — despite owning the system. Read Here »   CISA Adds 11 Known Exploited Vulnerabilities to Catalog  Cybersecurity& Infrastructure Security Agency CISA has added 11 new vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence that threat actors are actively exploiting the vulnerabilities. Read Here »   If You Use These 6 Phrases a Lot, You're a Better Leader Than You Think Inc. They may not be what you expect, but using them often will help increase trust. Read Here » 10 Other Interesting Links From This Week There were too many fantastic reads from this past weeks' worth of cybersecurity and technology news, so here are a few additional quick-hit links for your reading pleasure:      KrebsOnSecurity: Microsoft Patch Tuesday, March 2022 Edition      KrebsOnSecurity: Report-Recent 10x Increase in Cyberattacks on Ukraine      KrebsOnSecurity: Conti Ransomware Group Diaries, Part IV: Cryptocrime      DARKReading: Why You Should Be Using CISA’s Catalog of Exploited Vulnerabilities      The Register: For those with zero trust in zero-trust networks, this industry alliance may help      eSecurity Planet: Russia, China May Be Coordinating Cyber Attacks-SaaS Security Firm      BleepingComputer: Bridgestone Americas confirms ransomware attack, LockBit leaks data      BleepingComputer: CISA updates Conti ransomware alert with nearly 100 domain names      Wirecutter: A Practical Guide to Securing Your Windows PC      The Hacker News: New Exploit Bypasses Existing Spectre-V2 Mitigations in Intel, AMD, Arm CPUs