Top news of the week: 10.06.2020.

#EternalDarkness #Microsoft #SMBGhost #COVID19 #WFH #remote

Companies And Services

On Jun 9, 2020
@gregotto shared
Another fascinating @citizenlab report - https://t.co/lGmMJpuzSV
Open

Vast hack-for-hire scheme against activists, corporate targets tied to Indian IT firm

Vast hack-for-hire scheme against activists, corporate targets tied to Indian IT firm

An Indian cybersecurity firm operated a widespread hack-for-hire scheme known as "dark basin" that aimed to steal passwords, according to new research.

On Jun 4, 2020
@gregotto shared
Google: Biden and Trump campaigns targeted by separate spearphishing campaigns https://t.co/9DObeUj69h
Open

Google: Biden and Trump campaigns targeted by separate spearphishing campaigns

Google: Biden and Trump campaigns targeted by separate spearphishing campaigns

Hackers linked with China and Iran have been sending malicious emails to staff on Joe Biden and President Donald Trump’s campaigns, according to Google.

On Jun 9, 2020
@gregotto shared
RT @snlyngaas: Computer network ‘disruption’ forces Honda to cancel some production https://t.co/LnMyJW7dHg
Open

Computer network ‘disruption’ forces Honda to cancel some production

Computer network ‘disruption’ forces Honda to cancel some production

A “disruption” to Honda’s computer network forced the company to cancel some production operations on Monday, according to a company spokesperson.

On Jun 9, 2020
@ISC2 shared
[email protected]: The Curious State Of Cybersecurity during COVID-19 https://t.co/OV3KVT5EnX
Open

The Curious State Of Cybersecurity during COVID-19

The Curious State Of Cybersecurity during COVID-19

By: Murali Urs Today, as the world struggles with the unprecedented pandemic in the form of Coronavirus, millions of IT and cybersecurity professionals are

On Jun 9, 2020
@ISC2 shared
[email protected] research shows that understaffing continues to make organizations vulnerable to cyberattacks with 62% saying it is a challenge. Read the blog: https://t.co/zc6UCdJwDB
Open

Report: Cybersecurity Understaffing Lowers Ability to Handle Cyber Threats

Report: Cybersecurity Understaffing Lowers Ability to Handle Cyber Threats

Understaffing in cybersecurity teams remains a major challenge for organizations, with 62% of respondents in a recent ISACA survey saying they are struggling with it. And even though the ...

On Jun 8, 2020
@snlyngaas shared
RT @CyberScoopNews: Coronavirus conspiracy theorists threaten 5G cell towers, DHS memo warns https://t.co/KnDAItu7ZE by @snlyngaas
Open

Coronavirus conspiracy theorists threaten 5G cell towers, DHS memo warns

Coronavirus conspiracy theorists threaten 5G cell towers, DHS memo warns

Telecommunications providers should have robust security measures in place at 5G cell towers following a series of physical attacks from conspiracy theorists and other extremists, the ...

On Jun 9, 2020
@SCMagazine shared
Functioning PoC exploit code now exists for the highly critical #SMBGhost bug that #Microsoft last March patched in its SMBv3 protocol, and attackers are taking advantage, CISA has warned, citing open-source reports. #EternalDarkness https://t.co/R7nVs0Y5mI
Open

Attackers are using exploit code for SMBGhost bug, CISA warns

Attackers are using exploit code for SMBGhost bug, CISA warns

Working exploit code exists for the critical SMBGhost bug that Microsoft patched in its SMBv3 protocol, and attackers are taking advantage, warns CISA.

On Jun 9, 2020
@morphisec shared
Attacks against #remote teams have increased during #COVID19 as malicious parties look to exploit vulnerabilities with personal computers, spotty WiFi, and collaboration app usage. @techrepublic takes a look at the release of our #WFH threat index. https://t.co/sCJ6Gjeozq https://t.co/FYYs6KQ7PK
Open

Security faux pas: 56% of employees use personal computers to WFH

Security faux pas: 56% of employees use personal computers to WFH

Using nonwork authorized tech at home places company data at risk, especially since 23% of employees are unsure what security protocols exist on their devices, Morphisec found.