News Feed

• How to organize your Windows 11 Start menu with folders
  With the 2022 update to Windows 11, Microsoft has resurrected Start menu folders.
• Forget Pixel 7: The Galaxy Flip 4 is on sale at Target
  The phone just released in August, and if you've been eyeing a great deal on the 128GB model, you can save $100 on it right now.
• Step aside, AirPods. There's a new ANC champion in town
  Review: Meet the new QuietComfort Earbuds II. The active noise canceling on these Bose earbuds is so good I accidentally ignored my boss.
• The best Kindle deals on Amazon for October Prime Day
  Nabbing an e-reader for that upcoming holiday flight home? Check out the best Kindle deals for Amazon's Prime Early Access Sale -- aka October Prime Day.
• The best deals under $20 on Amazon for October Prime Day
  You can already snag amazing deals ahead of Amazon's Prime Early Access Sale -- aka October Prime Day. ZDNET is rounding up the best deals under $20.
• The best Ring & Blink deals ahead of October Prime Day
  Amazon's Prime Early Access Sale -- aka October Prime Day -- is nearly here. ZDNET is rounding up the best early deals on Ring and Blink video doorbells available right now, with some of the lowest prices we've ever seen.
• The best Samsung deals on Amazon for October Prime Day
  Amazon's Prime Early Access Sale -- aka October Prime Day -- is nearly here. ZDNET is rounding up the best Samsung deals we could find, so you can save on Samsung TVs, phones, tablets, and more.
• The best earbuds deals on Amazon for October Prime Day
  Earbuds and headphones are essential, whether you're constantly traveling or working from home -- but they can be pricey. We found the best earbuds and headphone deals ahead of Amazon's Prime Early Access Sale.
• The best monitor deals on Amazon for October Prime Day
  Eyeing a new monitor to complete your office setup? There are deals aplenty during Amazon's Prime Early Access Sale, some of which are available right now.
• The best Apple deals on Amazon for October Prime Day
  Amazon's Prime Early Access Sale is nearly here and the deals have begun. If you have been thinking of buying new Apple gadgets, ZDNET rounded up the best Apple deals you can buy right now.
• The best tablet deals on Amazon for October Prime Day
  Looking to snag a new tablet? Ahead of Amazon's October Prime Day, there are great early deals tablets from brands like Amazon, Samsung, and more.
• The best Fitbit deals on Amazon for October Prime Day
  The holiday shopping season is upon us with Thanksgiving and Black Friday sales already being promoted. So why not get started early with these October Prime Day deals on Fitbit devices and fitness trackers?
• The best Echo deals on Amazon for October Prime Day
  ZDNET has rounded up the best early Echo deals we could find while you're waiting for the official Amazon Prime Early Access Sale -- aka October Prime Day -- deals to drop. We're already seeing deals for up to 75% off certain devices.
• Fitbit deals: Save $70 on Sense, $50 on Versa 3 with codes
  Track your fitness goals with a Fitbit smartwatch and save up to $70 with exclusive codes from Wellbots.
• How to add wireless Apple CarPlay to your car
  Wired connections are a pain, but wireless is not without some limitations.
• How to use Opera's new Pinboard feature (and why you should)
  Here's an introduction to a new feature for the Opera web browser that allows you to collect your thoughts, links, and images in a convenient location.
• Small business tech outlook: Here are the challenges and opportunities ahead
  The economic outlook is creating headwinds for small business. But many now see tech as the key to thriving in uncertain times.
• Rust programming language outlines plan for updates to style guide
  The Rust team is putting more resources into helping developers write code faster.
• Facebook users warned: You may have downloaded these password-stealing Android and iOS apps
  Hundreds of malicious apps available in Google Play and Apple App Store tricked users into giving away their passwords. Here's what to watch out for.
• The 4 best travel VPNs of 2022
  The best travel VPN for you should be compatible with all of your mobile devices and provide a secure and reliable connection.

• State Bar of Georgia Notifies Members and Employees of Cybersecurity Incident
  Current and former employees and members are being offered complimentary credit monitoring and identity protection services as some personal information may have been accessed.
• Patch Now: Fortinet FortiGate & FortiProxy Contain Critical Vuln
  Fortinet issued a customer advisory urging customers to apply its update immediately.
• LofyGang Uses 100s of Malicious NPM Packages to Poison Open Source Software
  The group has been operating for over a year, promoting their tools in hacking forums, stealing credit card information, and using typosquatting techniques to target open source software flaws.
• We Can Save Security Teams From Crushing Workloads. Will We?
  Today, the processing of mountain-high stacks of alarms is considered "security." That system is failing customers and the cybersecurity workforce.
• CyberRatings.org Invites Industry Participation in Forthcoming Enterprise Firewall and Data Center Firewall Tests
  Test methodologies published today, and their scope includes security effectiveness, performance, stability and reliability, and total cost of ownership.
• Sharing Knowledge at 44CON
  The infosec conference named after the UK's calling code returned this year with a focus on building a healthy community.
• macOS Archive Utility Bug Lets Malicious Apps Bypass Security Checks
  Exploit allows unsigned and unnotarized macOS applications to bypass Gatekeeper and other security, without notifying the user.
• Russian Hackers Shut Down US State Government Websites
  Russian-speaking cyberattackers boast they are behind disruption of Colorado, Kentucky, and Mississippi government websites.
• US Consumers Are Finally Becoming More Security & Privacy Conscious
  The trend, spotted by Consumer Reports, could mean good news for organizations struggling to contain remote work challenges.
• Hackers Have It Out for Microsoft Email Defenses
  Cybercriminals are focusing more and more on crafting special email attacks that evade Microsoft Defender and Office security.
• Russia-Linked Cybercrime Group Hawks Combo of Malicious Services With LilithBot
  The malware-as-a-service group Eternity is selling a one-stop shop for various malware modules it's been distributing individually via a subscription model on Telegram.
• School Is in Session: 5 Lessons for Future Cybersecurity Pros
  Opportunities in the field continue to grow — and show no signs of slowing down.
• 7 IoT Devices That Make Security Pros Cringe
  A look at everything from truly dumb smart devices to cool-looking IoT tech with huge cybersecurity and privacy implications.
• New SonicWall Survey Data Reveals 91% of Organizations Fear Ransomware Attacks in 2022
  Amid an economic downturn, cybersecurity staffing shortages, and endless cyberattacks, financially motivated attacks are the top concern among IT professionals.
• Research Reveals Microsoft Teams Security and Backup Flaws, With Over Half of Users Sharing Business-Critical Information on the Platform
  Most backup and security vendors overlook this vital communication channel.
• Contrast Security Launches Expanded Security Testing Tools for JavaScript and Popular Angular, React, and jQuery Frameworks
  New language and framework support empowers developers to analyze front-end code for vulnerabilities throughout the development lifecycle.
• Relentless Russian Cyberattacks on Ukraine Raise Important Policy Questions
  Microsoft cybersecurity executive John Hewie explained cyberwar developments and what they mean for Western democratic policy going forward.
• Ikea Smart Light System Flaw Lets Attackers Turn Bulbs on Full Blast
  With just one malformed Zigbee frame, attackers could take over certain Ikea smart lightbulbs, leaving users unable to turn the lights down.
• CISA: Multiple APT Groups Infiltrate Defense Organization
  Advanced attackers gained access to Microsoft Exchange services, conducted searches of email, and used an open source toolkit to collect data from the network for nearly a year.
• Secure Your Application Layer, Secure Your Business
  Users and malicious actors interact with your business through the application layer. Build trust in your software by securing this first line of defense.
• NullMixer Dropper Delivers a Multimalware Code Bomb
  In one shot, Trojan dropper NullMixer installs a suite of downloaders, banking Trojans, stealers, and spyware on victims' systems.
• Giving Away the Keys to Your Backups? Here’s How to Keep Out Hackers
  As threat actors' sophistication has grown dramatically in the last few years, organizations haven't kept up with implementing the necessary countermeasure controls.
• NetSPI Raises $410 Million in Growth Funding from KKR
  New investment to fuel the offensive security leader's record-breaking growth and innovation pipeline.
• 7 Practical Considerations for Effective Threat Intelligence
  If your security team is considering, planning, building, or operating a threat intelligence capability, this advice can help.
• Why Don't CISOs Trust Their Employees?
  Executives fear "malicious insiders" as top cyber threat to companies, research shows. Reasonable steps to secure and monitor systems may prevent reputational damage but are not enough.
• RatMilad Spyware Scurries onto Enterprise Android Phones
  A novel mobile malware found lurking behind a phone-spoofing app is being distributed via Telegram and a dedicated website, in a broad operation to monitor corporate victims.
• The Insecurities of Cybersecurity Success
  Becoming a big wheel doesn't have to cost your happiness, but grind culture makes that likely.
• Exposure Management? Understanding the Attacker Takes Center Stage
  Announcing its exposure management platform, Tenable joins other companies in offering ways — such as attack surface management — to look at business networks through the eyes of attackers.
• Microsoft Updates Mitigation for Exchange Server Zero-Days
  Researchers had discovered that Microsoft's original mitigation steps for the so-called "ProxyNotShell" flaws was easily bypassed.
• Aussie Telco Telstra Breached, Reportedly Exposing 30,000 Employees' Data
  The Telstra cyber incident comes just weeks after its main rival Optus suffered a major compromise of its customer database.
• Former NSA Employee Faces Death Penalty for Selling Secrets
  Suspect allegedly thought he was swapping secrets with a foreign government for crypto — but the contact turned out to be an FBI agent.
• Workforce Data Privacy in the Modern Work Era
  It takes culture as well as individual and corporate responsibilities to ensure workforce data privacy and compliance.
• Steam Gaming Phish Showcases Browser-in-Browser Threat
  Attackers are using the recently emerged browser-in-the-browser phishing technique to steal accounts from Valve's popular gaming platform, but it's a warning shot to businesses.
• More Than 30% of All Malicious Attacks Target Shadow APIs
  New research spotlights how attackers are capitalizing on API-driven innovation.
• Eclypsium Raises Series B to Protect Digital Supply Chain As Attacks Grow
  The new round highlights market demand to protect global businesses from soaring breaches through supply chains of critical hardware, devices, firmware, and software.
• Aryaka Delivers Zero-Trust WAN Based on Unified SASE Architecture
  The new offering integrates firewall-as-a-service and secure web gateway into cloud-managed networking and security services.
• Ransomware 3.0: The Next Frontier
  Attackers are already circling back to reselling stolen data instead of — and in addition to — extortion.
• Tidal Cyber Closes $4M Funding Round To Expand Threat-Informed Defense Tech
  .
• Expert Insights: How to Protect Sensitive Machine-Learning Training Data Without Borking It
  Another element of ML security is the data used to train the machine learning system itself.
• Growing Reliance on Cloud Brings New Security Challenges
  With organizations expanding their cloud operations, cloud security is imperative to protect applications and data.
• Bumblebee Malware Loader's Payloads Significantly Vary by Victim System
  On some systems the malware drops infostealers and banking Trojans; on others it installs sophisticated post-compromise tools, new analysis shows.
• First 72 Hours of Incident Response Critical to Taming Cyberattack Chaos
  Responding to cyberattacks is extraordinarily stressful, but better planning, frequent practice, and the availability of mental health services can help IR professionals, a survey finds.
• Vice Society Publishes LA Public School Student Data, Psych Evals
  After a flat refusal to pay the ransom, Los Angeles Unified School District's stolen data has been dumped on the Dark Web by a ransomware gang.
• Name That Edge Toon: Mumbo Dumbo
  Come up with a clever caption, and our panel of experts will reward the winner with a $25 Amazon gift card.
• How AWS, Cisco, Netflix & SAP Are Approaching Cybersecurity Awareness Month
  This year's theme is "See Yourself in Cyber," and these security folks are using the month to reflect on the personal factor in cybersecurity.
• Worried About the Exchange Zero-Day? Here's What to Do
  While organizations wait for an official patch for the two zero-day flaws in Microsoft Exchange, they should scan their networks for signs of exploitation and apply these mitigations.
• LA School District Ransomware Attackers Now Threaten to Leak Stolen Data
  Weeks after it breached the Los Angeles Unified School District, the Vice Society ransomware group is threatening to leak the stolen data, unless they get paid.
• The Top 4 Mistakes in Security Programs to Avoid
  Overlooking even just a single security threat can severely erode a company’s community and consumer confidence, tarnish reputation and brand, negatively impact corporate valuations, provide competitors with an advantage, and create unwanted scrutiny.
• Reshaping the Threat Landscape: Deepfake Cyberattacks Are Here
  It's time to dispel notions of deepfakes as an emergent threat. All the pieces for widespread attacks are in place and readily available to cybercriminals, even unsophisticated ones.
• Cybercriminals See Allure in BEC Attacks Over Ransomware
  While ransomware seems stalled, business email compromise (BEC) attacks continue to make profits from the ProxyShell and Log4j vulnerabilities, nearly doubling in the latest quarter.
• Trojanized, Signed Comm100 Chat Installer Anchors Supply Chain Attack
  Malicious Comm100 files have been found scattered throughout North America, and across sectors including tech, healthcare, manufacturing, telecom, insurance, and others.
• Microsoft Confirms Pair of Blindsiding Exchange Zero-Days, No Patch Yet
  The "ProxyNotShell" security vulnerabilities can be chained for remote code execution and total takeover of corporate email platforms.
• SolarMarker Attack Leverages Weak WordPress Sites, Fake Chrome Browser Updates
  The SolarMarker group is exploiting a vulnerable WordPress-run website to encourage victims to download fake Chrome browser updates, part of a new tactic in its watering-hole attacks.
• With the Software Supply Chain, You Can't Secure What You Don't Measure
  Reports to the National Vulnerability Database jumped in 2022, but we should pay just as much attention to the flaws that are not being reported to NVD, including those affecting the software supply chain.
• Onyxia Raises $5M to Help Companies Proactively Manage Cybersecurity Risks Using AI
  Onyxia, an AI-powered cybersecurity strategy and performance platform providing a centralized way for security teams to monitor and manage cybersecurity efforts in real time, has raised $5 million in seed fundraising led by World Trade Ventures with participation by Silvertech Ventures and angel investors.
• Cyera Survey Finds One in Three Respondents Want to Minimize Cloud Data Risk
  Multiple providers say 'cloud data sprawl' makes managing cloud data risk a priority initiative within the next 12 months.
• Safous Adds Browser Isolation to Its Zero-Trust Network Access Service
  This new function offers secure access to corporate applications and external SaaS through a virtual browser.
• Israel Cybersecurity Enterprise (ICE) Teams with CybeReady to Deliver World-Class Security Training
  Security service provider selects cybersecurity training platform to safeguard enterprises in LATAM.
• Aunalytics Launches Security Patching Platform as a Service
  Expedited software patching and updating recognized as one of the most important processes to protect against system compromise from cyberattacks.
• Veristor Partners with SANS Security Awareness to Deliver Employee Security Awareness Training
  Companies collaborate to strengthen organizations' first line of security defense – end users.
• YouMail, Inc. and WMC Global Partner to Deliver Voice and SMS Phishing Disruption Services
  Joint phishing intelligence solution provides 360-degree mobile communication defense.
• Organizations Finding the Need for New Approaches on the Cybersecurity Front, CompTIA research reveals
  Settling for 'satisfactory' level of readiness may underestimate growing levels of risk.
• Intel Hardens Confidential Computing With Project Amber Updates
  The chip giant has developed new features and services to make it tougher for malicious hackers and insiders to access sensitive data from applications in the cloud.
• Latest Delinea Update Streamlines DevOps Security
  .
• KnowBe4 Simplifies Compliance Requirements for Healthcare Privacy
  KnowBe4's Compliance Audit Readiness Assessment (CARA) now addresses select requirements from HIPAA Security Rule.
• Pathlock Expands SAP Capabilities with Acquisition of Grey Monarch
  Combination of two companies to help SAP customers streamline audit, compliance and control processes.
• Ransomware Attacks Continue Increasing: 20% of All Reported Attacks Occurred in the Last 12 Months - New Survey
  Survey of over 2,000 IT pros revealed that a quarter either don't know or don't think Microsoft 365 data can be affected by ransomware.
• Why the US Should Help Secure Mexican Infrastructure — and What It Gets in Return
  Call it cross-border enlightened self-interest: As one of the US's premier trade partners and closest neighbors, what's bad for Mexico is bad for the US.
• The Country Where You Live Impacts Password Choices
  Literacy, levels of personal freedom, and other macro-social factors help determine how strong average passwords are in a given locale, researchers have found.
• Dangerous New Attack Technique Compromising VMware ESXi Hypervisors
  China-based threat actor used poisoned vSphere Installation Bundles to deliver multiple backdoors on systems, security vendor says.
• 3 Reasons Why BEC Scams Work in Real Estate
  Identity verification could be the key to fighting back and building trust in an industry beset with high-stakes fraud.
• (ISC)² Recruits More Than 55,000 Cybersecurity Candidates in First 30 Days of New Programs to Address Workforce Gap
  2,700 cybersecurity career pursuers have already passed the (ISC)2 Certified in Cybersecurity℠ exam, with more than 53,000 more people registered for a free course and exam.
• Capital One Phish Showcases Growing Bank-Brand Targeting Trend
  Capital One lures leveraged the bank's new partnership with Authentify, showing that phishers watch the headlines, and take advantage.
• Espionage Group Wields Steganographic Backdoor Against Govs, Stock Exchange
  APT group Witchetty (aka LookingFrog) has exploited the ProxyShell and ProxyLogon vulnerabilities to gain initial access and deploy new custom cyber tools against government agencies and a stock exchange.
• XSS Flaw in Prevalent Media Imaging Tool Exposes Trove of Patient Data
  Bugs in Canon Medical's Virea View could allow cyberattackers to access several sources of sensitive patient data.
• What Lurks in the Shadows of Cloud Security?
  Organizations looking to get ahead in cloud security have gone down the path of deploying CSPM tooling with good results. Still, there’s a clear picture that data security and security operations are next key areas of interest.
• Fake Accounts Are Not Your Friends!
  Inflated user bases and fake engagement cause more harm than good, especially when the artificial accounts are based on stolen human identities.
• Plug Your Data Leaks: Integrating Data Loss Prevention into Your Security Stack
  The average cost of a data-exposing cybersecurity incident is $4.35 million. If your business can’t avoid to pay, make sure you’ve got a strong data loss prevention practice in place.
• Google Quashes 5 High-Severity Bugs With Chrome 106 Update
  External researchers contributed 16 of the 20 security updates included in the new Chrome 106 Stable Channel rollout, including five high-severity bugs.
• Sophisticated Covert Cyberattack Campaign Targets Military Contractors
  Malware used in the STEEP#MAVERICK campaign features rarely seen obfuscation, anti-analysis, and evasion capabilities.
• Fast Company CMS Hack Raises Security Questions
  The company's website remains offline after hackers used its compromised CMS to send out racist messages.
• Container Supply Chain Attacks Cash In on Cryptojacking
  Cloud-native threats are costing cloud customer victims money as cryptojackers mine their vulnerable cloud instances.
• Google Cloud DORA: Securing the Supply Chain Begins With Culture
  The team's annual survey finds that the right development culture is better than technical measures when it comes to shoring up software supply chain security practices. An additional benefit: Less burnout.
• Phishing Attacks Crushed Records Last Quarter, Driven by Mobile
  Shocking phishing numbers (more than 1 million in a single quarter) are being driven by vishing, smishing, and other lures that target mobile devices.
• The Countdown to DORA
  With provisional agreement reached on the Digital Operational Resilience Act, the clock is now ticking for banks and information and communications technology (ICT) services companies with European operations. Here's what you need to know.
• Chaos Malware Resurfaces With All-New DDoS & Cryptomining Modules
  The previously identified ransomware builder has veered in an entirely new direction, targeting consumers and business of all sizes by exploiting known CVEs through brute-forced and/or stolen SSH keys.
• Illumio Introduces New Solution to Stop Endpoint Ransomware from Spreading Across the Hybrid Attack Surface
  Illumio Endpoint extends zero trust segmentation to see risk and set policy across macOS and Windows devices.
• Jamf Announces Intent to Acquire ZecOps, to Provide a Market-Leading Security Solution for Mobile Devices as Targeted Attacks Continue to Grow
  ZecOps extends Jamf's mobile security capabilities by adding advanced detections and incident response.
• Time to Change Our Flawed Approach to Security Awareness
  Defend against phishing attacks with more than user training. Measure users' suspicion levels along with cognitive and behavioral factors, then build a risk index and use the information to better protect those who are most vulnerable.
• When Will Cybersecurity Get Its Bloomberg Terminal?
  The "single pane of glass" that gathers and correlates all the information security professionals need doesn't exist, so it's up to us to create it.
• Malwarebytes Expands OneView Platform for MSPs
  Malwarebytes achieves 250% year-over-year MSP partner growth, introduces new modules to enhance protection, detection, and resolution of threats for SMBs.
• Most Attackers Need Less Than 10 Hours to Find Weaknesses
  Vulnerable configurations, software flaws, and exposed Web services allow hackers to find exploitable weaknesses in companies' perimeters in just hours, not days.
• Lazarus Lures Aspiring Crypto Pros With Fake Exchange Job Postings
  Previously observed using fake Coinbase jobs, the North Korea-sponsored APT has expanded into using Crypo.com gigs as cover to distribute malware.
• Amid Sweeping Change, Cyber Defenders Face Escalating Visibility — and Pressure
  Why cyber teams are now front and center for business enablement within organizations, and the significant challenges they face.
• FBI Helping Australian Authorities Investigate Massive Optus Data Breach: Reports
  Initial reports suggest a basic security error allowed the attacker to access the company's live customer database via an unauthenticated API.
• Microsoft Rolls Out Passwordless Sign-on for Azure Virtual Desktop
  Azure says cloud-native single sign-on with a passwordless option is most-requested new AVD feature in the product's history.
• Lessons From the GitHub Cybersecurity Breach
  This Tech Tip outlines three steps security teams should take to protect information stored in Salesforce.
• 4 Data Security Best Practices You Should Know
  There are numerous strategies to lessen the possibility and effects of a cyberattack, but doing so takes careful planning and targeted action.
• Adversaries Continue Cyberattacks with Greater Precision and Innovative Attack Methods According to NETSCOUT Report
  TCP-based, DNS water-torture, and carpet-bombing attacks dominate the DDoS threat landscape, while Ireland, India, Taiwan, and Finland are battered by DDoS attacks resulting from the Russia/Ukraine war.
• Netography Upgrades Platform to Provide Scalable, Continuous Network Security and Visibility
  Netography Fusion® gives security and cloud operations teams visibility and control of network traffic and context across users, applications, data, and devices.

• State Bar of Georgia Notifies Members and Employees of Cybersecurity Incident
  Current and former employees and members are being offered complimentary credit monitoring and identity protection services as some personal information may have been accessed.
• Patch Now: Fortinet FortiGate & FortiProxy Contain Critical Vuln
  Fortinet issued a customer advisory urging customers to apply its update immediately.
• LofyGang Uses 100s of Malicious NPM Packages to Poison Open Source Software
  The group has been operating for over a year, promoting their tools in hacking forums, stealing credit card information, and using typosquatting techniques to target open source software flaws.
• We Can Save Security Teams From Crushing Workloads. Will We?
  Today, the processing of mountain-high stacks of alarms is considered "security." That system is failing customers and the cybersecurity workforce.
• CyberRatings.org Invites Industry Participation in Forthcoming Enterprise Firewall and Data Center Firewall Tests
  Test methodologies published today, and their scope includes security effectiveness, performance, stability and reliability, and total cost of ownership.
• Sharing Knowledge at 44CON
  The infosec conference named after the UK's calling code returned this year with a focus on building a healthy community.
• macOS Archive Utility Bug Lets Malicious Apps Bypass Security Checks
  Exploit allows unsigned and unnotarized macOS applications to bypass Gatekeeper and other security, without notifying the user.
• Russian Hackers Shut Down US State Government Websites
  Russian-speaking cyberattackers boast they are behind disruption of Colorado, Kentucky, and Mississippi government websites.
• US Consumers Are Finally Becoming More Security & Privacy Conscious
  The trend, spotted by Consumer Reports, could mean good news for organizations struggling to contain remote work challenges.
• Hackers Have It Out for Microsoft Email Defenses
  Cybercriminals are focusing more and more on crafting special email attacks that evade Microsoft Defender and Office security.
• Russia-Linked Cybercrime Group Hawks Combo of Malicious Services With LilithBot
  The malware-as-a-service group Eternity is selling a one-stop shop for various malware modules it's been distributing individually via a subscription model on Telegram.
• School Is in Session: 5 Lessons for Future Cybersecurity Pros
  Opportunities in the field continue to grow — and show no signs of slowing down.
• 7 IoT Devices That Make Security Pros Cringe
  A look at everything from truly dumb smart devices to cool-looking IoT tech with huge cybersecurity and privacy implications.
• New SonicWall Survey Data Reveals 91% of Organizations Fear Ransomware Attacks in 2022
  Amid an economic downturn, cybersecurity staffing shortages, and endless cyberattacks, financially motivated attacks are the top concern among IT professionals.
• Research Reveals Microsoft Teams Security and Backup Flaws, With Over Half of Users Sharing Business-Critical Information on the Platform
  Most backup and security vendors overlook this vital communication channel.
• Contrast Security Launches Expanded Security Testing Tools for JavaScript and Popular Angular, React, and jQuery Frameworks
  New language and framework support empowers developers to analyze front-end code for vulnerabilities throughout the development lifecycle.
• Relentless Russian Cyberattacks on Ukraine Raise Important Policy Questions
  Microsoft cybersecurity executive John Hewie explained cyberwar developments and what they mean for Western democratic policy going forward.
• Ikea Smart Light System Flaw Lets Attackers Turn Bulbs on Full Blast
  With just one malformed Zigbee frame, attackers could take over certain Ikea smart lightbulbs, leaving users unable to turn the lights down.
• CISA: Multiple APT Groups Infiltrate Defense Organization
  Advanced attackers gained access to Microsoft Exchange services, conducted searches of email, and used an open source toolkit to collect data from the network for nearly a year.
• Secure Your Application Layer, Secure Your Business
  Users and malicious actors interact with your business through the application layer. Build trust in your software by securing this first line of defense.
• NullMixer Dropper Delivers a Multimalware Code Bomb
  In one shot, Trojan dropper NullMixer installs a suite of downloaders, banking Trojans, stealers, and spyware on victims' systems.
• Giving Away the Keys to Your Backups? Here’s How to Keep Out Hackers
  As threat actors' sophistication has grown dramatically in the last few years, organizations haven't kept up with implementing the necessary countermeasure controls.
• NetSPI Raises $410 Million in Growth Funding from KKR
  New investment to fuel the offensive security leader's record-breaking growth and innovation pipeline.
• 7 Practical Considerations for Effective Threat Intelligence
  If your security team is considering, planning, building, or operating a threat intelligence capability, this advice can help.
• Why Don't CISOs Trust Their Employees?
  Executives fear "malicious insiders" as top cyber threat to companies, research shows. Reasonable steps to secure and monitor systems may prevent reputational damage but are not enough.
• RatMilad Spyware Scurries onto Enterprise Android Phones
  A novel mobile malware found lurking behind a phone-spoofing app is being distributed via Telegram and a dedicated website, in a broad operation to monitor corporate victims.
• The Insecurities of Cybersecurity Success
  Becoming a big wheel doesn't have to cost your happiness, but grind culture makes that likely.
• Exposure Management? Understanding the Attacker Takes Center Stage
  Announcing its exposure management platform, Tenable joins other companies in offering ways — such as attack surface management — to look at business networks through the eyes of attackers.
• Microsoft Updates Mitigation for Exchange Server Zero-Days
  Researchers had discovered that Microsoft's original mitigation steps for the so-called "ProxyNotShell" flaws was easily bypassed.
• Aussie Telco Telstra Breached, Reportedly Exposing 30,000 Employees' Data
  The Telstra cyber incident comes just weeks after its main rival Optus suffered a major compromise of its customer database.
• Former NSA Employee Faces Death Penalty for Selling Secrets
  Suspect allegedly thought he was swapping secrets with a foreign government for crypto — but the contact turned out to be an FBI agent.
• Workforce Data Privacy in the Modern Work Era
  It takes culture as well as individual and corporate responsibilities to ensure workforce data privacy and compliance.
• Steam Gaming Phish Showcases Browser-in-Browser Threat
  Attackers are using the recently emerged browser-in-the-browser phishing technique to steal accounts from Valve's popular gaming platform, but it's a warning shot to businesses.
• More Than 30% of All Malicious Attacks Target Shadow APIs
  New research spotlights how attackers are capitalizing on API-driven innovation.
• Eclypsium Raises Series B to Protect Digital Supply Chain As Attacks Grow
  The new round highlights market demand to protect global businesses from soaring breaches through supply chains of critical hardware, devices, firmware, and software.
• Aryaka Delivers Zero-Trust WAN Based on Unified SASE Architecture
  The new offering integrates firewall-as-a-service and secure web gateway into cloud-managed networking and security services.
• Ransomware 3.0: The Next Frontier
  Attackers are already circling back to reselling stolen data instead of — and in addition to — extortion.
• Tidal Cyber Closes $4M Funding Round To Expand Threat-Informed Defense Tech
  .
• Expert Insights: How to Protect Sensitive Machine-Learning Training Data Without Borking It
  Another element of ML security is the data used to train the machine learning system itself.
• Growing Reliance on Cloud Brings New Security Challenges
  With organizations expanding their cloud operations, cloud security is imperative to protect applications and data.
• Bumblebee Malware Loader's Payloads Significantly Vary by Victim System
  On some systems the malware drops infostealers and banking Trojans; on others it installs sophisticated post-compromise tools, new analysis shows.
• First 72 Hours of Incident Response Critical to Taming Cyberattack Chaos
  Responding to cyberattacks is extraordinarily stressful, but better planning, frequent practice, and the availability of mental health services can help IR professionals, a survey finds.
• Vice Society Publishes LA Public School Student Data, Psych Evals
  After a flat refusal to pay the ransom, Los Angeles Unified School District's stolen data has been dumped on the Dark Web by a ransomware gang.
• Name That Edge Toon: Mumbo Dumbo
  Come up with a clever caption, and our panel of experts will reward the winner with a $25 Amazon gift card.
• How AWS, Cisco, Netflix & SAP Are Approaching Cybersecurity Awareness Month
  This year's theme is "See Yourself in Cyber," and these security folks are using the month to reflect on the personal factor in cybersecurity.
• Worried About the Exchange Zero-Day? Here's What to Do
  While organizations wait for an official patch for the two zero-day flaws in Microsoft Exchange, they should scan their networks for signs of exploitation and apply these mitigations.
• LA School District Ransomware Attackers Now Threaten to Leak Stolen Data
  Weeks after it breached the Los Angeles Unified School District, the Vice Society ransomware group is threatening to leak the stolen data, unless they get paid.
• The Top 4 Mistakes in Security Programs to Avoid
  Overlooking even just a single security threat can severely erode a company’s community and consumer confidence, tarnish reputation and brand, negatively impact corporate valuations, provide competitors with an advantage, and create unwanted scrutiny.
• Reshaping the Threat Landscape: Deepfake Cyberattacks Are Here
  It's time to dispel notions of deepfakes as an emergent threat. All the pieces for widespread attacks are in place and readily available to cybercriminals, even unsophisticated ones.
• Cybercriminals See Allure in BEC Attacks Over Ransomware
  While ransomware seems stalled, business email compromise (BEC) attacks continue to make profits from the ProxyShell and Log4j vulnerabilities, nearly doubling in the latest quarter.
• Trojanized, Signed Comm100 Chat Installer Anchors Supply Chain Attack
  Malicious Comm100 files have been found scattered throughout North America, and across sectors including tech, healthcare, manufacturing, telecom, insurance, and others.
• Microsoft Confirms Pair of Blindsiding Exchange Zero-Days, No Patch Yet
  The "ProxyNotShell" security vulnerabilities can be chained for remote code execution and total takeover of corporate email platforms.
• SolarMarker Attack Leverages Weak WordPress Sites, Fake Chrome Browser Updates
  The SolarMarker group is exploiting a vulnerable WordPress-run website to encourage victims to download fake Chrome browser updates, part of a new tactic in its watering-hole attacks.
• With the Software Supply Chain, You Can't Secure What You Don't Measure
  Reports to the National Vulnerability Database jumped in 2022, but we should pay just as much attention to the flaws that are not being reported to NVD, including those affecting the software supply chain.
• Onyxia Raises $5M to Help Companies Proactively Manage Cybersecurity Risks Using AI
  Onyxia, an AI-powered cybersecurity strategy and performance platform providing a centralized way for security teams to monitor and manage cybersecurity efforts in real time, has raised $5 million in seed fundraising led by World Trade Ventures with participation by Silvertech Ventures and angel investors.
• Cyera Survey Finds One in Three Respondents Want to Minimize Cloud Data Risk
  Multiple providers say 'cloud data sprawl' makes managing cloud data risk a priority initiative within the next 12 months.
• Safous Adds Browser Isolation to Its Zero-Trust Network Access Service
  This new function offers secure access to corporate applications and external SaaS through a virtual browser.
• Israel Cybersecurity Enterprise (ICE) Teams with CybeReady to Deliver World-Class Security Training
  Security service provider selects cybersecurity training platform to safeguard enterprises in LATAM.
• Aunalytics Launches Security Patching Platform as a Service
  Expedited software patching and updating recognized as one of the most important processes to protect against system compromise from cyberattacks.
• Veristor Partners with SANS Security Awareness to Deliver Employee Security Awareness Training
  Companies collaborate to strengthen organizations' first line of security defense – end users.
• YouMail, Inc. and WMC Global Partner to Deliver Voice and SMS Phishing Disruption Services
  Joint phishing intelligence solution provides 360-degree mobile communication defense.
• Organizations Finding the Need for New Approaches on the Cybersecurity Front, CompTIA research reveals
  Settling for 'satisfactory' level of readiness may underestimate growing levels of risk.
• Intel Hardens Confidential Computing With Project Amber Updates
  The chip giant has developed new features and services to make it tougher for malicious hackers and insiders to access sensitive data from applications in the cloud.
• Latest Delinea Update Streamlines DevOps Security
  .
• KnowBe4 Simplifies Compliance Requirements for Healthcare Privacy
  KnowBe4's Compliance Audit Readiness Assessment (CARA) now addresses select requirements from HIPAA Security Rule.
• Pathlock Expands SAP Capabilities with Acquisition of Grey Monarch
  Combination of two companies to help SAP customers streamline audit, compliance and control processes.
• Ransomware Attacks Continue Increasing: 20% of All Reported Attacks Occurred in the Last 12 Months - New Survey
  Survey of over 2,000 IT pros revealed that a quarter either don't know or don't think Microsoft 365 data can be affected by ransomware.
• Why the US Should Help Secure Mexican Infrastructure — and What It Gets in Return
  Call it cross-border enlightened self-interest: As one of the US's premier trade partners and closest neighbors, what's bad for Mexico is bad for the US.
• The Country Where You Live Impacts Password Choices
  Literacy, levels of personal freedom, and other macro-social factors help determine how strong average passwords are in a given locale, researchers have found.
• Dangerous New Attack Technique Compromising VMware ESXi Hypervisors
  China-based threat actor used poisoned vSphere Installation Bundles to deliver multiple backdoors on systems, security vendor says.
• 3 Reasons Why BEC Scams Work in Real Estate
  Identity verification could be the key to fighting back and building trust in an industry beset with high-stakes fraud.
• (ISC)² Recruits More Than 55,000 Cybersecurity Candidates in First 30 Days of New Programs to Address Workforce Gap
  2,700 cybersecurity career pursuers have already passed the (ISC)2 Certified in Cybersecurity℠ exam, with more than 53,000 more people registered for a free course and exam.
• Capital One Phish Showcases Growing Bank-Brand Targeting Trend
  Capital One lures leveraged the bank's new partnership with Authentify, showing that phishers watch the headlines, and take advantage.
• Espionage Group Wields Steganographic Backdoor Against Govs, Stock Exchange
  APT group Witchetty (aka LookingFrog) has exploited the ProxyShell and ProxyLogon vulnerabilities to gain initial access and deploy new custom cyber tools against government agencies and a stock exchange.
• XSS Flaw in Prevalent Media Imaging Tool Exposes Trove of Patient Data
  Bugs in Canon Medical's Virea View could allow cyberattackers to access several sources of sensitive patient data.
• What Lurks in the Shadows of Cloud Security?
  Organizations looking to get ahead in cloud security have gone down the path of deploying CSPM tooling with good results. Still, there’s a clear picture that data security and security operations are next key areas of interest.
• Fake Accounts Are Not Your Friends!
  Inflated user bases and fake engagement cause more harm than good, especially when the artificial accounts are based on stolen human identities.
• Plug Your Data Leaks: Integrating Data Loss Prevention into Your Security Stack
  The average cost of a data-exposing cybersecurity incident is $4.35 million. If your business can’t avoid to pay, make sure you’ve got a strong data loss prevention practice in place.
• Google Quashes 5 High-Severity Bugs With Chrome 106 Update
  External researchers contributed 16 of the 20 security updates included in the new Chrome 106 Stable Channel rollout, including five high-severity bugs.
• Sophisticated Covert Cyberattack Campaign Targets Military Contractors
  Malware used in the STEEP#MAVERICK campaign features rarely seen obfuscation, anti-analysis, and evasion capabilities.
• Fast Company CMS Hack Raises Security Questions
  The company's website remains offline after hackers used its compromised CMS to send out racist messages.
• Container Supply Chain Attacks Cash In on Cryptojacking
  Cloud-native threats are costing cloud customer victims money as cryptojackers mine their vulnerable cloud instances.
• Google Cloud DORA: Securing the Supply Chain Begins With Culture
  The team's annual survey finds that the right development culture is better than technical measures when it comes to shoring up software supply chain security practices. An additional benefit: Less burnout.
• Phishing Attacks Crushed Records Last Quarter, Driven by Mobile
  Shocking phishing numbers (more than 1 million in a single quarter) are being driven by vishing, smishing, and other lures that target mobile devices.
• The Countdown to DORA
  With provisional agreement reached on the Digital Operational Resilience Act, the clock is now ticking for banks and information and communications technology (ICT) services companies with European operations. Here's what you need to know.
• Chaos Malware Resurfaces With All-New DDoS & Cryptomining Modules
  The previously identified ransomware builder has veered in an entirely new direction, targeting consumers and business of all sizes by exploiting known CVEs through brute-forced and/or stolen SSH keys.
• Illumio Introduces New Solution to Stop Endpoint Ransomware from Spreading Across the Hybrid Attack Surface
  Illumio Endpoint extends zero trust segmentation to see risk and set policy across macOS and Windows devices.
• Jamf Announces Intent to Acquire ZecOps, to Provide a Market-Leading Security Solution for Mobile Devices as Targeted Attacks Continue to Grow
  ZecOps extends Jamf's mobile security capabilities by adding advanced detections and incident response.
• Time to Change Our Flawed Approach to Security Awareness
  Defend against phishing attacks with more than user training. Measure users' suspicion levels along with cognitive and behavioral factors, then build a risk index and use the information to better protect those who are most vulnerable.
• When Will Cybersecurity Get Its Bloomberg Terminal?
  The "single pane of glass" that gathers and correlates all the information security professionals need doesn't exist, so it's up to us to create it.
• Malwarebytes Expands OneView Platform for MSPs
  Malwarebytes achieves 250% year-over-year MSP partner growth, introduces new modules to enhance protection, detection, and resolution of threats for SMBs.
• Most Attackers Need Less Than 10 Hours to Find Weaknesses
  Vulnerable configurations, software flaws, and exposed Web services allow hackers to find exploitable weaknesses in companies' perimeters in just hours, not days.
• Lazarus Lures Aspiring Crypto Pros With Fake Exchange Job Postings
  Previously observed using fake Coinbase jobs, the North Korea-sponsored APT has expanded into using Crypo.com gigs as cover to distribute malware.
• Amid Sweeping Change, Cyber Defenders Face Escalating Visibility — and Pressure
  Why cyber teams are now front and center for business enablement within organizations, and the significant challenges they face.
• FBI Helping Australian Authorities Investigate Massive Optus Data Breach: Reports
  Initial reports suggest a basic security error allowed the attacker to access the company's live customer database via an unauthenticated API.
• Microsoft Rolls Out Passwordless Sign-on for Azure Virtual Desktop
  Azure says cloud-native single sign-on with a passwordless option is most-requested new AVD feature in the product's history.
• Lessons From the GitHub Cybersecurity Breach
  This Tech Tip outlines three steps security teams should take to protect information stored in Salesforce.
• 4 Data Security Best Practices You Should Know
  There are numerous strategies to lessen the possibility and effects of a cyberattack, but doing so takes careful planning and targeted action.
• Adversaries Continue Cyberattacks with Greater Precision and Innovative Attack Methods According to NETSCOUT Report
  TCP-based, DNS water-torture, and carpet-bombing attacks dominate the DDoS threat landscape, while Ireland, India, Taiwan, and Finland are battered by DDoS attacks resulting from the Russia/Ukraine war.
• Netography Upgrades Platform to Provide Scalable, Continuous Network Security and Visibility
  Netography Fusion® gives security and cloud operations teams visibility and control of network traffic and context across users, applications, data, and devices.

Cyber Security Feed.