SBS CyberSecurity - In The Wild 274

 

In The Wild - CyberSecurity Newsletter Welcome to the 274rd  issue of In The Wild, SBS' weekly CyberSecurity newsletter. The objective of this newsletter is to share threat intelligence, news articles that are relevant, new and updated guidance, and other information to help you make better cybersecurity decisions. Below, you will find some of the latest-and-greatest news stories, articles, videos, and links from the past week in cybersecurity. Some of the following stories have been shared by consultants, others by the SBS Institute, and others yet simply been found in the far corners of the internet. We hope you find the following stories relevant, interesting, and – most of all – useful. Enjoy. Follow SBS CyberSecurity on Social Media for more articles, stories, news, and resources!           Hacker Hour: Introduction to Zero Trust SBS Educational Resources Tuesday, May 17  |  2:00-3:00 PM CT Join SBS as we break down the principles of building a zero trust environment and how this framework can prevent data breaches, limit internal lateral movement, and improve an organization’s security posture. Read Here »   Your Phone May Soon Replace Many of Your Passwords KrebsOnSecurity Apple, Google and Microsoft announced this week they will soon support an approach to authentication that avoids passwords altogether, and instead requires users to merely unlock their smartphones to sign in to websites or online services. Read Here »   FBI warns workers to beware of BEC scams that have stolen $43 billion in five years Techspot Domestic and international losses are estimated to have reached $43 billion between June 2016 to December 2021, and increased 65% between July 2019 and December 2021. Read Here »   Criminals Are Scamming Zelle Users. Here's How to Keep Your Money Safe CNET Criminals are using the peer-to-peer payment service to drain bank accounts. Here's how to protect yourself. Read Here »   Do you know which SBS Institute Certification Programs are coming up? Check out the Certification Calendar and share with your clients. Find Out Here! » AGCO ransomware attack disrupts tractor sales during U.S. planting season Reuters U.S. agricultural equipment maker AGCO Corp (AGCO.N) said on Friday a ransomware attack was affecting operations at some of its production facilities, and dealers said tractor sales had been stalled during the crucial planting season. Read Here »   Experts Analyze Conti and Hive Ransomware Gangs' Chats With Their Victims The Hacker News Today, we released a report detailing the relentless and destructive Russian cyberattacks we’ve observed in a hybrid war against Ukraine, and what we’ve done to help protect Ukrainian people and organizations. We believe it’s important to share this information so that policymakers and the public around the world know what’s occurring, and so others in the security community can continue to identify and defend against this activity. Read Here »   Security researchers: Here's how the Lazarus hackers start their attacks ZDNet Here's how North Korea's Lazarus hackers use LinkedIn to reach targets and Office macros to compromise hosts. Read Here »   Most Change Initiatives Fail — Here’s How To Beat The Odds Forbes From employee resistance to a lack of leadership role-modeling, there are myriad reasons why 70% of all change initiatives fail. Read Here » 10 Other Interesting Links From This Week There were too many fantastic reads from this past weeks' worth of cybersecurity and technology news, so here are a few additional quick-hit links for your reading pleasure:      KrebsOnSecurity: Russia to Rent Tech-Savvy Prisoners to Corporate IT?      BleepingComputer: The Week in Ransomware - May 6th 2022 - An evolving landscape      BleepingComputer: Caramel credit card stealing service is growing in popularity      The Hacker News: NIST Releases Updated Cybersecurity Guidance for Managing Supply Chain Risks      Bloomberg: Nobody Knows Where the Red Line Is for Cyberwarfare      Security Week: Vulnerabilities Allow Hijacking of Most Ransomware to Prevent File Encryption      The Record: Connecticut becomes fifth state with data privacy law      Tech Crunch: Health startup myNurse to shut down after data breach exposed health records      ZDNet: Decade-old bugs discovered in Avast, AVG antivirus software      ZDNet: A security researcher easily found my passwords and more: How my digital footprints left me surprisingly over-exposed