SBS CyberSecurity - In The Wild 313

 

In The Wild - CyberSecurity Newsletter Welcome to the 313th issue of In The Wild, SBS' weekly CyberSecurity newsletter. The objective of this newsletter is to share threat intelligence, news articles that are relevant, new and updated guidance, and other information to help you make better cybersecurity decisions. Below, you will find some of the latest-and-greatest news stories, articles, videos, and links from the past week in cybersecurity. Some of the following stories have been shared by consultants, others by the SBS Institute, and others yet simply been found in the far corners of the internet. We hope you find the following stories relevant, interesting, and – most of all – useful. Enjoy. Follow SBS CyberSecurity on Social Media for more articles, stories, news, and resources!           Four Steps To Better Business Continuity Plan Testing SBS Educational Resources If you’ve never enacted your BCP, it’s hard to be confident that your plan will be sufficient. Testing helps to continuously improve your ability to successfully recover from various scenarios. Follow these steps to build a better BCP testing program and ensure you are prepared for any situation. Read Here »   Cyber Insurer Sees Remote Access, Cloud Databases Under Fire infoRiskToday Criminals lately have been prioritizing two types of attacks: exploiting Remote Desktop Protocol and penetrating cloud databases. Read Here »   98% of organizations worldwide connected to breached third-party vendors CybersecurityDIVE Healthcare averaged 15.5 vendors and the financial services industry averaged the lowest number, with 6.5. Read Here »   Massive ESXiArgs ransomware attack targets VMware ESXi servers worldwide BleepingComputer Approximately 3,200 VMware ESXi servers worldwide have been compromised in the ESXiArgs ransomware campaign, according to a Censys search. Read Here »   Do you know which SBS Institute Certification Programs are coming up? Check out the Certification Calendar and share with your clients. Find Out Here! » Avoid at All Costs: IT Outages Are Pricier Than You Think Spiceworks What’s the real price of an IT outage? Find out how to prevent downtime. Read Here »   Microsoft: We are tracking these 100 active ransomware gangs using 50 types of malware ZDNet Microsoft warns that phishing, fake software updates, and unpatched vulnerabilities are being exploited for ransomware attacks. Read Here »   Post-Macro World Sees Rise in Microsoft OneNote Documents Delivering Malware The Hacker News In a continuing sign that threat actors are adapting well to a post-macro world, it has emerged that the use of Microsoft OneNote documents to deliver malware via phishing attacks is on the rise. Read Here »   Managing and leading aren't the same thing. Here's why it matters ZDNet It seems like every up-and-coming professional aspires to being a leader, but don't make the mistake of thinking managers aren't just as important. Read Here » 10 Other Interesting Links From This Week There were too many fantastic reads from this past weeks' worth of cybersecurity and technology news, so here are a few additional quick-hit links for your reading pleasure:      KrebsOnSecurity: Finland’s Most-Wanted Hacker Nabbed in France      ars Technica: Until further notice, think twice before using Google to download software      The New York Times: Retirees Are Losing Their Life Savings to Romance Scams. Here’s What to Know.      BleepingComputer: The Week in Ransomware - February 3rd 2023 - Ending with a mess      BleepingComputer: TruthFinder, Instant Checkmate confirm data breach affecting 20M customers      The Record: Tallahassee hospital diverting patients, canceling non-emergency surgeries after cyberattack      The Record: ‘Global markets’ impacted by ransomware attack on financial software company      DARKReading:Why CISOs Should Care About Brand Impersonation Scam Sites      TechRepublic: The headache of changing passwords      TechRepublic: New cybersecurity BEC attack mimics vendors