SBS CyberSecurity - In The Wild 268

 


SBS Newsletter header

 

In The Wild - CyberSecurity Newsletter

Welcome to the 268th  issue of In The Wild, SBS' weekly CyberSecurity newsletter. The objective of this newsletter is to share threat intelligence, news articles that are relevant, new and updated guidance, and other information to help you make better cybersecurity decisions.

Below, you will find some of the latest-and-greatest news stories, articles, videos, and links from the past week in cybersecurity. Some of the following stories have been shared by consultants, others by the SBS Institute, and others yet simply been found in the far corners of the internet. We hope you find the following stories relevant, interesting, and – most of all – useful. Enjoy.

Follow SBS CyberSecurity on Social Media for more articles, stories, news, and resources!

         

Hacker Hour: Top 5 IT Exam Recommendations

Date: March 30, 2022  |  Time: 2:00-3:00 pm CT

SBS Educational Resources

IT audits or exams are a vital measurement for an organization. They ensure that the company continues to mature and achieve compliance but, more importantly, adopt a proactive security mindset. SBS is fortunate to work with thousands of institutions and we see a wide range of exam/audit findings. This session will cover the top five exam recommendations and open the discussion about what other findings are popping up around the country. Please join us and share your experience with hundreds of other security professionals.

Read Here »  

Estonian Tied to 13 Ransomware Attacks Gets 66 Months in Prison

KrebsOnSecurity

An Estonian man was sentenced today to more than five years in a U.S. prison for his role in at least 13 ransomware attacks that caused losses of approximately $53 million. Prosecutors say the accused also enjoyed a lengthy career of “cashing out” access to hacked bank accounts worldwide.

Read Here »  

Image

FACT SHEET: Act Now to Protect Against Potential Cyberattacks

The White House

There is now evolving intelligence that Russia may be exploring options for potential cyberattacks. … We urge companies to execute the following steps with urgency …

Read Here »  

Image

How to build a culture of cybersecurity:

MIT Sloan School of Management

Technology and training are not enough to safeguard companies against today’s litany of cybersecurity attacks. Here’s how to infuse safe behavior into corporate culture.

Read Here »  

Do you know which SBS Institute Certification Programs are coming up? Check out the Certification Calendar and share with your clients. Find Out Here! »

FCC puts Kaspersky on security threat list, says it poses “unacceptable risk“

Ars technica

The Federal Communications Commission on Friday determined that security products from Kaspersky posed an unacceptable risk to US national security and added the company to a covered list of other firms not eligible for FCC funds.

Read Here »  

Morgan Stanley client accounts breached in social engineering attacks

BleepingComputer

Morgan Stanley Wealth Management, the wealth and asset management division of Morgan Stanley, says some of its customers had their accounts compromised in social engineering attacks.

Read Here »  

This is how fast a ransomware attack encrypts all your files

ZDNet

Researchers examined how quickly ransomware encrypts files - in some cases, it just takes a matter of minutes.

Read Here »  

Image

How Bad Is It Really to Multitask?

LIVESTRONG

We spoke to neurologists to discover the effects of multitasking and got their tips on how best to manage when you can't avoid it.

Read Here »

10 Other Interesting Links From This Week

There were too many fantastic reads from this past weeks' worth of cybersecurity and technology news, so here are a few additional quick-hit links for your reading pleasure:

*     KrebsOnSecurity: A Closer Look at the LAPSUS$ Data Extortion Group

*     KrebsOnSecurity: ‘Spam Nation’ Villain Vrublevsky Charged With Fraud

*     BleepingComputer: CISA adds 66 vulnerabilities to list of bugs exploited in attacks

*     BleepingComputer: The Week in Ransomware - March 25th 2022 - Critical infrastructure

*     The National: Health care most targeted sector for cyber attacks in 2021, Cisco says

*     Threat Post: Bridgestone Hit as Ransomware Torches Toyota Supply Chain

*     The Guardian: Not using a password manager? Here’s why you should be…

*     ZDNet: This is how much the average Conti hacking group member earns a month

*     ZDNet: Ransomware is scary, but another scam is costing victims much, much more, says FBI

*     The Hacker News: North Korean Hackers Exploited Chrome Zero-Day to Target Fintech, IT, and Media Firms

Comments

Post a Comment

Popular posts from this blog

KnowBe4 - Scam Of The Week: "When Users Add Their Names to a Wall of Shame"

Image
Eric Howes , KnowBe4 Principal Lab Researcher, found out about another insidious bad guy trick: " If you work in IT there has undoubtedly come a dark moment when you wondered to yourself just who among your employee users would be gullible enough to click through a phishing email and potentially bring down your organization. from KnowBe4 Security Awareness Training Blog https://blog.knowbe4.com/when-users-add-their-names-to-a-wall-of-shame
Read more

Krebs - NY Charges First American Financial for Massive Data Leak

Image
In May 2019, KrebsOnSecurity broke the news that the website of mortgage title insurance giant First American Financial Corp. had exposed approximately 885 million records related to mortgage deals going back to 2003. On Wednesday, regulators in New York announced that First American was the target of their first ever cybersecurity enforcement action in connection with the incident, charges that could bring steep financial penalties. First American Financial Corp. Santa Ana, Calif.-based  First American [ NYSE:FAF ] is a leading provider of title insurance and settlement services to the real estate and mortgage industries. It employs some 18,000 people and brought in $6.2 billion in 2019 . As first reported here last year , First American’s website exposed 16 years worth of digitized mortgage title insurance records — including bank account numbers and statements, mortgage and tax records, Social Security numbers, wire transaction receipts, and drivers license images. The docum
Read more

SBS CyberSecurity - In The Wild 166

Image
  In The Wild - CyberSecurity Newsletter Welcome to the 166 th issue of In The Wild, SBS’ weekly CyberSecurity newsletter. The objective of this newsletter is to share threat intelligence, news articles that are relevant, new and updated guidance, and other information to help you make better cybersecurity decisions. Follow SBS CyberSecurity on Social Media for more articles, stories, news, and resources!           Below, you will find some of the latest-and-greatest news stories, articles, videos, and links from the past week in cybersecurity. Some of the following stories have been shared by consultants, others by the SBS Institute, and others yet simply been found in the far corners of the Internet. We hope you find the following stories relevant, interesting, and – most of all – useful. Enjoy. CyberRiskNOW Virtual Conference SBS Educational Resources This virtual conference is designed to provide interactive training on evo
Read more