Tag Archive for: friday

Cyber Security Today, Week in Review for Friday, July 1, 2022

/in


Welcome to Cyber Security Today. This is the Week in Review for the week ending Friday, July 1st, 2022.

Today is Canada Day, so if you’re listening on this national holiday weekend, thanks for tuning in.

 

 

In a few minutes David Shipley of Beauceron Security will join me to discuss recent cybersecurity news. But first a review of some of the highlights from the last seven days:

Fed up with malicious botnets spreading malware, this country’s telecommunications regulator says mandatory botnet blocking will be part of the responsibilities of internet carriers here. But first the regulator will work out a framework carriers can use. David and I will discuss the implications.

We’ll also look at an advisory from the U.S. that government departments and companies subscribing to Microsoft Exchange Online should immediately switch from what’s called Basic Authentication for logging in users to the safer Modern Authentication.

A Hamilton teen who stole $48-million in cryptocurrency from an American entrepreneur by hacking his cellphone has been sentenced by a Canadian judge to one year on probation and banned from handling digital currency for a year. David will have some thoughts on the ease with which some cellphone carriers fall for SIM card swapping.

And we’ll examine what could have been a catastrophe for a Japanese city when an IT contractor lost a USB stick with personal data on all of the municipality’s 460,000 residents.

Elsewhere, the newly-formed Black Basta ransomware gang is claiming to have successfully hit 50 victims, while those behind the retiring Conti-branded gang claim to have successfully hit 46 organizations in April before dismantling their infrastructure.

The problem with claims by crooks is they are hard to confirm. For example Walmart this week denied claims by a gang saying it successfully hit the retailer. And at the time of this recording microprocessor manufacturer AMD was investigating a claim by a data theft and extortion group called RansomHouse that it stole 450 gigabytes of data from the company last year.

Security researcher Brett Callow of Emsisoft reported the Lockbit ransomware gang is finding new ways to squeeze victims to pay up. One…

Source…

T. Rex Dispute, Texas Trans Healthcare, Russian Cyber Warfare, Bird Calls. March 4, 2022, Part 1 | Science Friday

/in


T. Rex Dispute, Texas Trans Healthcare, Russian Cyber Warfare, Bird Calls. March 4, 2022, Part 1 | Science Friday | WNYC Studios

A doctor showing a trans patient a syringe used to inject testosterone.
( The Gender Spectrum Collection
)

WNYC Studios

Source…

Cyber Security Today, Week in Review for Friday, Nov. 26, 2021

/in


Welcome to Cyber Security Today. It’s the Week in Review edition for the week ending Friday November 26th. I’m Howard Solomon, contributing writer on cybersecurity for ITWorldCanada.com.

In a few minutes Dinah Davis, the Canadian-based vice-president of research and development at managed service provider Arctic Wolf will be with me for a discussion. But first a look back at some of the news from the past seven days:

GoDaddy, one of the biggest internet hosting providers, has admitted that a compromised password led to the hack of its managed WordPress service. The email addresses of up to 1.2 million active and inactive WordPress customers were copied. Worse is that usernames and passwords for a number of subscribers to the hosted service were exposed, forcing GoDaddy to make those users reset their passwords. Dinah and I will discuss this incident.

Windows administrators were warned to watch for suspicious changes in users’ access privileges. This comes after a researcher released proof of concept code for a new Windows zero-day vulnerability. If a person has access to a computer they may be able to easily upgrade their privileges to administrator using the exploit. Cisco Systems says hackers are already trying to take advantage of the vulnerability.

How fast can a hacker find an improperly protected server or database open to the internet? Sometimes, within hours. This is according to a report released this week on a test by Palo Alto Networks. It set up a number of honeypots on the internet to discover what happens. Dinah and I will discuss what the company calls shocking results that are a lesson for IT managers.

The Conti ransomware gang has suffered a temporary blow. Researchers at the Swiss cybersecurity firm called Prodaft published a report this week saying they managed to get into the group’s payment portal. They came away with valuable information for law enforcement agencies and IT security teams. According to one news service Conti briefly had to take down the portal, which is where ransomware victims make payments. It’s back online.

Organizations running network protection devices from FatPipe have been warned to install the latest software updates. They…

Source…

The Best Costco Black Friday and Cyber Monday Deals Available Now – The New York Times

/in



The Best Costco Black Friday and Cyber Monday Deals Available Now  The New York Times

Source…