SBS CyberSecurity - In The Wild 290

 

In The Wild - CyberSecurity Newsletter Welcome to the 290th  issue of In The Wild, SBS' weekly CyberSecurity newsletter. The objective of this newsletter is to share threat intelligence, news articles that are relevant, new and updated guidance, and other information to help you make better cybersecurity decisions. Below, you will find some of the latest-and-greatest news stories, articles, videos, and links from the past week in cybersecurity. Some of the following stories have been shared by consultants, others by the SBS Institute, and others yet simply been found in the far corners of the internet. We hope you find the following stories relevant, interesting, and – most of all – useful. Enjoy. Follow SBS CyberSecurity on Social Media for more articles, stories, news, and resources!           Hacker Hour: Locking Down Microsoft 365 Date: Tuesday, August 30 Time: 2:00 - 3:00 PM CT SBS Educational Resources If your organization has implemented or researched Microsoft 365, you know there are various licensing options available, including Outlook, Teams, SharePoint, Intune, and more. It is essential to understand default controls and which controls need to be modified to lock down the security posture of your environment. Join SBS as we identify and understand basic and advanced Microsoft 365 features and how they can impact your security. Read Here »   The number of companies caught up in recent hacks keeps growing Ars Technica 2FA provider Authy, password manager LastPass, and DoorDash all experienced breaches.. Read Here »   What’s New in the 2022 Cost of a Data Breach Report [securityintelligence.com]SecurityIntelligence The average cost of a data breach reached an all-time high of $4.35 million this year, according to newly published 2022 Cost of a Data Breach Report. Read Here »   Lloyd’s to Exclude Catastrophic Nation-Backed Cyberattacks From Insurance Coverage The Wall Street Journal By 2023, insurer groups must add clauses to cyber policies excluding state-backed hacks that severely affect target nation’s infrastructure, insurance marketplace says Read Here »   Do you know which SBS Institute Certification Programs are coming up? Check out the Certification Calendar and share with your clients. Find Out Here! » Hackers are attempting to steal millions of dollars from businesses by bypassing multi-factor authentication ZDNet Cybersecurity researchers detail a BEC scam targeting high-level Microsoft Office 365 accounts, even if they're protected with MFA. Read Here »   Hackers Breach LastPass Developer System to Steal Source Code The Hacker News Password management service LastPass confirmed a security incident that resulted in the theft of certain source code and technical information. Read Here »   The Week in Ransomware - August 26th 2022 - Fighting back BleepingComputer We saw a bit of ransomware drama this week, mostly centered around LockBit, who saw their data leak sites taken down by a DDoS attack after they started leaking the allegedly stolen Entrust data. Read Here »   This is the most effective way to deliver feedback Fast Company It can be scary to receive feedback. Here’s how you can make your notes for improvement more forgiving and effective. Read Here » 10 Other Interesting Links From This Week There were too many fantastic reads from this past weeks' worth of cybersecurity and technology news, so here are a few additional quick-hit links for your reading pleasure:      Cybersecurity and Infrastructure Security Agency: CISA Adds Ten Known Exploited Vulnerabilities to Catalog      BleepingComputer: French hospital hit by $10M ransomware attack, sends patients elsewhere      Oregon Public Broadcasting: Before Portland lost $1.4 million in cyber breach, city treasurer raised red flag      VICE: Hackers Are Breaking Into and Emptying Cash App Accounts      10 News, San Diego: Elderly couple loses nearly $700K online scam      The Hacker News: U.S. Government Spending Billions on Cybersecurity      Threat Post: Firewall Bug Under Active Attack Triggers CISA Warning      Threat Post: Ransomware Attacks are on the Rise      ZDNet: Hackers are using this sneaky exploit to bypass Microsoft's multi-factor authentication      DARKReading: Easing the Cyber-Skills Crisis With Staff Augmentation