SBS CyberSecurity - In The Wild 278

 

In The Wild - CyberSecurity Newsletter Welcome to the 278th  issue of In The Wild, SBS' weekly CyberSecurity newsletter. The objective of this newsletter is to share threat intelligence, news articles that are relevant, new and updated guidance, and other information to help you make better cybersecurity decisions. Below, you will find some of the latest-and-greatest news stories, articles, videos, and links from the past week in cybersecurity. Some of the following stories have been shared by consultants, others by the SBS Institute, and others yet simply been found in the far corners of the internet. We hope you find the following stories relevant, interesting, and – most of all – useful. Enjoy. Follow SBS CyberSecurity on Social Media for more articles, stories, news, and resources!           {Webinar} Embracing the Four C’s of Your Bank’s Culture – Collaboration, Competence, Compliance & Cybersecurity SBS Educational Resources Date: June 22, 2022 Time: 2:00 - 4:00 PM ET Ready to build the “end all, be all” culture at your bank?  Join Honey Shelton, CEO, SBS CyberSecurity in this virtual training opportunity as she shares strategies that ensure you win at establishing and fine-tuning an enviable workplace culture. Read Here »   Top 10 Android banking trojans target apps with 1 billion downloads BleepingComputer The ten most prolific Android mobile banking trojans target 639 financial applications that collectively have over one billion downloads on the Google Play Store. Read Here »   Feeling highly stressed about your job? You must be a CISO The Register Almost all cybersecurity professionals are stressed, and nearly half (46 percent) have considered leaving the industry altogether, according to a DeepInstinct survey. Read Here »   Don't let your cloud cybersecurity choices leave the door open for hackers ZDNet Cloud software and applications allow staff to work from anywhere. But if your cloud security is poor, cyber criminals can also get in. Read Here »   Do you know which SBS Institute Certification Programs are coming up? Check out the Certification Calendar and share with your clients. Find Out Here! » Microsoft Releases Workarounds for Office Vulnerability Under Active Exploitation The Hacker News Microsoft on Monday published guidance for a newly discovered zero-day security flaw in its Office productivity suite that could be exploited to achieve code execution on affected systems. Read Here »   CISA Updates Advisory on Threat Actors Chaining Unpatched VMware Vulnerabilities Cybersecurity & Infrastructure Security Agency (CISA) CISA encourages organizations to review the latest update to AA22-138B and update impacted VMware products to the latest version or remove impacted versions from organizational networks. Read Here »   Broadcom plans a “rapid transition” to subscription revenue for VMware Ars Technica Subscription software is continually updated—but also continually paid for. Read Here »   Thought-Provoking Questions To Build Team Culture Hive If you want better answers, ask better questions – especially if you care about building a healthy team culture. Read Here » 10 Other Interesting Links From This Week There were too many fantastic reads from this past weeks' worth of cybersecurity and technology news, so here are a few additional quick-hit links for your reading pleasure:      KrebsOnSecurity: What Counts as “Good Faith Security Research?”      KrebsOnSecurity: Costa Rica May Be Pawn in Conti Ransomware Group’s Bid to Rebrand, Evade Sanctions      BleepingComputer: The Week in Ransomware - June 3rd 2022 - Evading sanctions      BleepingComputer: Ransomware gang now hacks corporate websites to show ransom notes      CybersecurityDive: Cybersecurity threat extends to utility credit ratings- Fitch      The Hacker News: Atlassian Releases Patch for Confluence Zero-Day Flaw Exploited in the Wild      The Hacker News: Chinese Hackers Begin Exploiting Latest Microsoft Office Zero-Day Vulnerability      ZDNet: Is your Windows license legal? Should you even care?      ZDNet: Singapore mandates 'kill switch' for banks as safeguard against online scams      CPO Magazine: Zero-Day Remote Code Execution Vulnerability Found in Microsoft Office; No Patch Yet, But Possible Fix Available