SBS CyberSecurity - In The Wild 291

 

In The Wild - CyberSecurity Newsletter Welcome to the 291st   issue of In The Wild, SBS' weekly CyberSecurity newsletter. The objective of this newsletter is to share threat intelligence, news articles that are relevant, new and updated guidance, and other information to help you make better cybersecurity decisions. Below, you will find some of the latest-and-greatest news stories, articles, videos, and links from the past week in cybersecurity. Some of the following stories have been shared by consultants, others by the SBS Institute, and others yet simply been found in the far corners of the internet. We hope you find the following stories relevant, interesting, and – most of all – useful. Enjoy. Follow SBS CyberSecurity on Social Media for more articles, stories, news, and resources!           #askSBS: Social Engineering and Social Media SBS Educational Resources Question: Can being politically outspoken through social media put you at increased risk from a social engineering perspective? Read Here »   How 1-Time Passcodes Became a Corporate Liability KrebsOnSecurity Phishers are enjoying remarkable success using text messages to steal remote access credentials and one-time passcodes from employees at some of the world’s largest technology companies and customer support firms. Read Here »   Cyber-Insurance Firms Limit Payouts, Risk Obsolescence DARKReading Businesses need to re-evaluate their cyber-insurance policies as firms like Lloyd's of London continue to add restrictions, including excluding losses related to state-backed cyberattackers. Read Here »   Changing cyber insurance guidance from Lloyd’s reflects a market in turmoil Cybersecurity Dive Rising ransomware attacks and higher payout demands have battered the insurance industry, leaving many organizations exposed and vulnerable. Read Here »   Do you know which SBS Institute Certification Programs are coming up? Check out the Certification Calendar and share with your clients. Find Out Here! » Linux devices 'increasingly' under attack from hackers, warn security researchers ZDNet Ransomware groups want to make as much money as possible - that means they're going after more varied targets. Read Here »   Google Releases Urgent Chrome Update to Patch New Zero-Day Vulnerability The Hacker News Google on Friday shipped emergency fixes to address a security vulnerability in the Chrome web browser that it said is being actively exploited in the wild. Read Here »   LockBit ransomware gang gets aggressive with triple-extortion tactic BleepingComputer LockBit ransomware gang announced that it is improving defenses against distributed denial-of-service (DDoS) attacks and working to take the operation to triple extortion level. Read Here »   Try these simple strategies to master the 7 skills you need to improve your teamwork Fast Company Use these strategies to align expectations, streamline communication, and crush your goals. Read Here » 10 Other Interesting Links From This Week There were too many fantastic reads from this past weeks' worth of cybersecurity and technology news, so here are a few additional quick-hit links for your reading pleasure:      KrebsOnSecurity: Violence-as-a-Service-Brickings, Firebombings & Shootings for Hire      The Hacker News: CISA Adds 10 New Known Actively Exploited Vulnerabilities to its Catalog      Bleeping Computer: NSA and CISA share tips to secure the software supply chain      Microsoft Security: Cyber Signals:- 3 strategies for protection against ransomware      Tripwire: FBI issues warning after crypto-crooks steal $1.3 billion in just three months      The Verge: Samsung says a data breach revealed some customers’ names, birthdays, and more      The Record: More than 20,000 SSNs stolen during ransomware attack on San Francisco 49ers      Threat Post: Student Loan Breach Exposes 2.5M Records      ArsTechnica: Microsoft finds TikTok vulnerability that allowed one-click account compromises      Data Breach Today: As States Ban Ransom Payments, What Could Possibly Go Wrong?