Top news of the week: 29.07.2020.
#WastedLocker #Garmin #ransomware #CyberSecurity #VPN #remoteaccess #CobaltStrike
Companies And Services
#CyberSecurity
CISA says 62,000 QNAP NAS devices have been infected with the QSnatch malware.
QSnatch malware, first spotted in late 2019, has grown from 7,000 bots to more than 62,000, according to a joint US CISA and UK NCSC security alert.
https://t.co/P81SzgG3rl
via @ZDNet
OpenCISA says 62,000 QNAP NAS devices have been infected with the QSnatch malware
QSnatch malware, first spotted in late 2019, has grown from 7,000 bots to more than 62,000, according to a join US CISA and UK NCSC security alert.
RT @briankrebs: Considering a career in cybersecurity? Here are some hard truths about what you should expect potential employers will expect, and how to better stand out from the crowd. https://t.co/Sn4AehUY6C
OpenThinking of a Cybersecurity Career? Read This
Rarely am I asked which practical skills they should seek to make themselves more appealing candidates for a future job. But happily, a somewhat unique aspect of cybersecurity is …
RT @Claroty: Shortly after the NSA & CISA alerted industrial companies to tighten their security measures, Claroty researchers reveal #VPN vulnerabilities affecting #remoteaccess to industrial control systems. Read more from @snlyngaas in @CyberScoopNews: https://t.co/dvP6Ap4XIv
OpenNew VPN flaws highlight proven pathway for hackers into industrial organizations
A new report from Claroty found bugs in VPN servers and devices that could allow access to industrial computers that are used to connect to machinery.
The #Garmin incident shows how companies need to be prepared for the worst. @Kaspersky researcher Denis Legezo shares insight with @scmagazine #WastedLocker #ransomware #CobaltStrike https://t.co/LzjZEAGVFD https://t.co/lHoaYSxrk4
OpenGarmin expects delays after WastedLocker ransomware attack
Garmin, whose tech is used in a variety of industries, including automotive, is working to recover from a WastedLocker ransomware attacks. PHOTO CREDIT:
RT @shanvav: Chinese DJI drones' Android app could allow hackers to target users with malicious apps or gain near full control of users’ phones, per @Synacktiv/@grimmcyber, as the US intelligence community continues warnings over Chinese tech/firms. @CyberScoopNews https://t.co/feOr1mNtTr
OpenApp for Chinese DJI drones could give hackers full control of users' phones, researchers say
The Android application used to operate drones from DJI, a Chinese firm, could allow hackers gain full control of users’ phones, researchers say.
The core objectives of ITSM and cybersecurity asset management are very different. More on these differences with @AxoniusInc:
https://t.co/RmohimSiNB
OpenIT Service Management vs. Cybersecurity Asset Management
At the surface, IT service management (ITSM) shares a lot of similarities to cybersecurity asset management, but the core objectives are very different.
Your disaster recovery plan is probably out of date >> https://t.co/6f7N98lObe https://t.co/h8L71VhVRw
OpenYour Disaster Recovery Plan Is Probably Out of Date
Disaster recovery plans can quickly become outdated, so many organizations need to modernize their approaches now and add more automation.
Q&A: Asset management and risk
In this installment of the Axonius Q&A series, CISO Lenny Zeltzer discusses how IT asset management impacts risk management.