Woodstock Wire: Enterprise Security News

April 15, 2021

Okta Welcomes Steve Dodenhoff as SVP of Worldwide Partners and Alliances

Business Wire -- Okta, Inc. (NASDAQ:OKTA), the leading independent identity provider, welcomes Steve Dodenhoff as SVP of Worldwide Partners and Alliances, reporting to Chief Revenue Officer Steve Rowland within Okta's Worldwide Field Operations. Dodenhoff will be responsible...

April 15, 2021 08:17 PM

Abnormal Security Selected as Top 10 Finalist for RSA Conference 2021 Innovation Sandbox Contest

Business Wire -- Abnormal Security today announced the company has been named one of 10 finalists for the RSA Conference 2021 Innovation Sandbox Contest for its breakthrough cloud-native email security platform that stops modern email attacks through behavioral data science....

April 15, 2021 08:16 PM

FBI shuts down malware on hundreds of Exchange servers, opens Pandora's box

Infosec -- Malwarebytes Unpacked - A rather remarkable story has emerged, setting the scene for lively debates about permissible system access. A press release from the US Department of Justice Judge has revealed that the FBI were granted permission to perform some...

April 15, 2021 05:52 AM

RiskIQ is Illuminating the Global Attack Surface With Next-Gen Security Intelligence

Infosec -- RiskIQ - For many of us, what draws us into cybersecurity is that original promise of the internet-bringing people together. That idea of creating connections across the world and making sure those connections are safe is something worth defending every...

April 15, 2021 05:52 AM

The CISO Life is Half as Good

Infosec -- Dark Reading - Lora Vaughn was at a crossroads -- and that was before mandated pandemic lockdowns came into play. Here's her story of how life got sweeter after she stepped away from the CISO job.

April 15, 2021 05:51 AM

Unpatched Microsoft Exchange Servers hit with cryptojacking

Infosec -- CyberScoop - Hackers are hitting Microsoft Exchange Servers with a Monero cryptominer, according to Sophos research published Tuesday.

The attackers, which Sophos did not identify, began their apparently financially-motivated campaign shortly after...

April 15, 2021 05:50 AM

Microsoft Has Busy April Patch Tuesday with Zero-Days, Exchange Fixes

Infosec -- Threatpost - Microsoft fixes 110 vulnerabilities, with 19 classified as critical and another flaw under active attack.

April 15, 2021 05:49 AM

Introducing WebSockets Support in Cloudflare Workers

Infosec -- Cloudflare - Today, we're releasing support for WebSockets in Cloudflare Workers.WebSockets unlock powerful use-cases in your serverless applications - live-updating, interactive experiences that bridge the gap between your users and Workers' powerful...

April 15, 2021 05:49 AM

FBI silently removed web shells planted on Microsoft Exchange servers in the US

Infosec -- Security Affairs - FBI log into web shells that hackers installed on Microsoft Exchange email servers across the US and removed the malicious code used by threat actors.

A US judge granted the FBI the power to log into web shells that were injected...

April 15, 2021 05:48 AM

FireEye: More than 1,900 distinct hacking groups are active today

Infosec -- Record by Recorded Future - US cybersecurity firm FireEye says that based on its internal data, there are currently more than 1,900 distinct hacking groups that are active today, a number that grew from 1,800 groups recorded at the end of 2019.

April 15, 2021 05:48 AM

NSA Discovers New Vulnerabilities Affecting Microsoft Exchange Servers

Infosec -- The Hacker News - In its April slate of patches, Microsoft rolled out fixes for a total of 114 security flaws, including an actively exploited zero-day and four remote code execution bugs in Exchange Server.

Of the 114 flaws, 19 are rated as Critical,...

April 15, 2021 05:48 AM

DNS Vulnerabilities Expose Millions of Internet-Connected Devices to Attack

Infosec -- Dark Reading - Researchers uncover a fresh set of nine vulnerabilities in four TCP/IP stacks that are widely used in everything from powerful servers and firewalls to consumer IoT products.

April 15, 2021 05:47 AM

Justice Department announces court-authorized effort to disrupt exploitation of Microsoft Exchange Server vulnerabilities

Infosec -- Office of Inadequate Security - Action copied and removed web shells that provided backdoor access to servers, but additional steps may be required to patch Exchange Server software and expel hackers from victim networks. HOUSTON - Authorities have executed...

April 15, 2021 05:46 AM

Microsoft fixes 2 critical Exchange Server flaws reported by the NSA

Infosec -- Security Affairs - Microsoft patch Tuesday security updates address four high and critical vulnerabilities in Microsoft Exchange Server that were reported by the NSA.

Microsoft patch Tuesday security updates released today have addressed four critical...

April 15, 2021 05:45 AM

Two former NSA Officials appointed by Joe Biden for prominent cyber roles

Infosec -- Security Affairs - President Joe Biden has appointed two former senior NSA officials for two prominent cyber roles in his administration.

President Joe Biden has assigned to two former senior National Security Agency (NSA) officials key cyber roles...

April 15, 2021 05:44 AM

White House announces leadership picks for CISA and National Cyber Director role

Infosec -- Record by Recorded Future - The Biden administration on Monday said it has picked two National Security Agency veterans to serve in top cybersecurity leadership roles. Chris Inglis will be nominated to serve as the country's first National Cyber Director,...

April 15, 2021 05:44 AM

LinkedIn denies 500 million user data breach

Infosec -- Record by Recorded Future - LinkedIn has formally denied a rumor that it suffered a devastating security breach that exposed the account details of more than 500 million of its registered users.

April 15, 2021 05:40 AM

April 12, 2021

Zyxel Nebula Adds Firewall to Deliver Most Comprehensive Cloud Networking Solution for SMBs

Business Wire -- #WiFi--Zyxel announces the addition of the USG FLEX firewall series to the cloud-managed Nebula networking solution for SMBs and MSPs.

April 12, 2021 04:45 PM

WISeKey to increase manufacturing capabilities to support demand

Media -- Evertiq - Cybersecurity and IoT company, WISeKey, says that it is significantly investing in its supply chain transformation to better and faster serve its customers. The company is simultaneously impacted by the current semiconductor shortage situation...

April 12, 2021 04:42 PM

Scientists harness chaos to protect devices from hackers

Life -- EurekAlert - Researchers have found a way to use chaos to help develop digital fingerprints for electronic devices that may be unique enough to foil even the most sophisticated hackers. Just how unique are these fingerprints? The researchers believe it...

April 12, 2021 03:37 AM

This man was planning to kill 70% of Internet in a bomb attack against AWS

Infosec -- Security Affairs - The FBI arrested a man for allegedly planning a bomb attack against Amazon Web Services (AWS) to kill about 70% of the internet.

The FBI arrested Seth Aaron Pendley (28), from Texas, for allegedly planning to launch a bomb attack...

April 12, 2021 02:51 AM

Women Are Facing an Economic Crisis & the Cybersecurity Industry Can Help

Infosec -- Dark Reading - Investing in women's cybersecurity careers can bring enormous benefits and help undo some of the significant economic damage wrought by the pandemic.

April 12, 2021 02:46 AM

CISA releases post-compromise tool Aviary to review Microsoft 365

Infosec -- Security Affairs - CISA released a Splunk-based dashboard for post-compromise activity in Microsoft Azure Active Directory (AD), Office 365, and MS 365 environments.

The Cybersecurity and Infrastructure Security Agency (CISA) has released a Splunk-based...

April 12, 2021 02:45 AM

Unstructured data growth poses hidden cloud security and compliance risk

Infosec -- Barracuda - There's an often-repeated stat that 90% of all data that exists today has been created in the last two years. The provenance of that figure is murky and disputed, and it dates back to nearly 10 years ago, so even if it was true then, that...

April 12, 2021 02:43 AM

4 steps to better security hygiene and posture management

Infosec -- CSO Online - As the old security adage goes, "a well-managed network/system is a secure network/system," and this notion of network and system management is a cybersecurity foundation. Pick any framework (e.g., NIST Cybersecurity framework), international...

April 12, 2021 02:42 AM

Digging Into the Third Zero-Day Chrome Flaw of 2021

Infosec -- TripWire - The State of Security - Hidden deep in Google's release notes for the new version of Chrome that shipped on March 1 is a fix for an "object lifecycle issue." Or, for the less technically inclined, a major bug. Bugs like these have been common...

April 12, 2021 02:41 AM

Fraudsters Use HTML Legos to Evade Detection in Phishing Attack

Infosec -- Dark Reading - Criminals stitch pieces of HTML together and hide them in JavaScript files, researchers report.

April 12, 2021 02:38 AM

US intelligence report warns of increased offensive cyber, disinformation around the world

Infosec -- CyberScoop - Over the course of the next 20 years, nation-states will see a rise in targeted offensive cyber-operations and disinformation in an increasingly "volatile and confrontational" global security landscape, according to a new U.S. intelligence...

April 12, 2021 02:37 AM

5 Things CISOs Need to Know About Card Fraud

Infosec -- Flashpoint - The Market for Stolen Credit Cards Is Alive and Well in 2021

Payment and credit card fraud are constant concerns for security leaders, holding major financial and reputational consequences for card-issuing financial institutions. For threat...

April 12, 2021 02:35 AM

No honor among thieves: Scammers target stolen credit card hubs

Infosec -- CyberScoop - Two online hubs for stolen credit cards found themselves on the receiving end of hack-and-leak operations last month.

User data from the card store Swarmshop was posted to a different underground forum on March 17, exposing hundreds of...

April 12, 2021 02:34 AM

Hackers Exploit Unpatched VPNs to Install Ransomware on Industrial Targets

Infosec -- The Hacker News - Unpatched Fortinet VPN devices are being targeted in a series of attacks against industrial enterprises in Europe to deploy a new strain of ransomware called "Cring" inside corporate networks.

At least one of the hacking incidents led...

April 12, 2021 02:32 AM

NIST and HIPAA: Is There a Password Connection?

Infosec -- The Hacker News - When dealing with user data, it's essential that we design our password policies around compliance. These policies are defined both internally and externally.

While companies uphold their own password standards, outside forces like HIPAA...

April 12, 2021 02:08 AM

Google's Project Zero Finds a Nation-State Zero-Day Operation

Infosec -- Schneier on Security - Google's Project Zero discovered, and caused to be patched, eleven zero-day exploits against Chrome, Safari, Microsoft Windows, and iOS. This seems to have been exploited by "Western government operatives actively conducting a counterterrorism...

April 12, 2021 02:08 AM

Hush - This Data Is Secret

Infosec -- ISC2 Blog - Is There Ever Too Much Data?

As a security practitioner, you know that businesses are fuelled not only by people but by data. Years ago, the phrase "Big Data" was a new, innovative way to gain a business advantage. Now, big data is the norm....

April 12, 2021 02:06 AM

PHP Site's User Database Was Hacked In Recent Source Code Backdoor Attack

Infosec -- The Hacker News - The maintainers of the PHP programming language have issued an update regarding the security incident that came to light late last month, stating that the actors may have gotten hold of a user database containing their passwords to make...

April 12, 2021 01:55 AM

Did 4 Major Ransomware Groups Truly Form a Cartel?

Infosec -- Dark Reading - An analysis of well-known extortion groups and their cryptocurrency transactions reveals the answer.

April 12, 2021 01:51 AM

Introducing Okta's New Risk Ecosystem API: A Fraud Fighting Toolset to Secure Authentication and Delight Customers

Infosec -- Okta Blog - Introducing Okta's New Risk Ecosystem API: A Fraud Fighting Toolset to Secure Authentication and Delight Customers

April 12, 2021 01:50 AM

Breaking Barriers: Scaling Infrastructure Identity with Advanced Server Access

Infosec -- Okta Blog - Breaking Barriers: Scaling Infrastructure Identity with Advanced Server Access

April 12, 2021 01:50 AM

SAP warns of malicious activity targeting unpatched systems

Infosec -- Malwarebytes Unpacked - A timely warning to keep systems patched has appeared, via a jointly-released report from Onapsis and SAP. The report details how threat actors are "targeting and potentially exploiting unprotected mission-critical SAP applications"....

April 12, 2021 01:46 AM

New Cring ransomware deployed via unpatched Fortinet VPNs

Infosec -- Record by Recorded Future - Unpatched Fortinet VPN devices are being hacked to deploy a new strain of ransomware inside corporate networks, Russian security firm Kaspersky said today.

April 12, 2021 01:44 AM

5 Ways to Transform Your Phishing Defenses Right Now

Infosec -- Dark Reading - By transforming how you approach phishing, you can break the phishing kill chain and meaningfully reduce your business risk.

April 12, 2021 01:43 AM

A new headache for ransomware-hit companies. Extortionists emailing your customers

Infosec -- TripWire - The State of Security - Cybercriminal extortionists have adopted a new tactic to apply even more pressure on their corporate victims: contacting the victims' customers, and asking them to demand a ransom is paid to protect their own privacy....

April 12, 2021 01:42 AM

11 Useful Security Tips for Securing Your AWS Environment

Infosec -- The Hacker News - Want to take advantage of excellent cloud services? Amazon Web Services may be the perfect solution, but don't forget about AWS security.

Whether you want to use AWS for a few things or everything, you need to protect access to it. Then...

April 12, 2021 01:39 AM

Critical Auth Bypass Bug Found in VMWare Data Centre Security Product

Infosec -- The Hacker News - A critical vulnerability in the VMware Carbon Black Cloud Workload appliance could be exploited to bypass authentication and take control of vulnerable systems.

Tracked as CVE-2021-21982, the flaw is rated 9.1 out of a maximum of 10...

April 12, 2021 01:38 AM

European Commission and other institutions were hit by a major cyber-attack

Infosec -- Security Affairs - Not only the European Commission, but many other organizations of the European Union have been targeted by a cyberattack in March.

A European Commission spokesperson confirmed that the European Commission, along with other European...

April 12, 2021 01:37 AM

3 Types of Phishing Threats Your Organisation Can Encounter

Infosec -- FraudWatch Intl - Since we are living in the age of information, your data and its protection are now more valuable than ever. Even more so is the case for an organisation like yours, which can be considered a hub for sensitive details about financial...

April 12, 2021 01:35 AM

Why You Need Cybersecurity Services for Social Media Marketing

Infosec -- FraudWatch Intl - Saying that the internet is bustling with activity is an understatement. Millions upon millions of different operations, activities, and tasks are taking place every second, whether the action be taken by robots or humans. Most of these...

April 12, 2021 01:35 AM

Too slow! Booking.com fined for not reporting data breach fast enough

Infosec -- Naked Security - It's not just the breach, it's the speed of the breach response...

April 12, 2021 01:32 AM

April 11, 2021

3 Best Practices for Building Secure Container Images

Infosec -- TripWire - The State of Security - Organizations are increasingly turning to containers to fuel their digital transformations. According to BMC, a 2019 survey found that more than 87% of respondents were running containers-up from 55% just two years earlier....

April 11, 2021 08:07 PM

How To Defend the Extended Network Against Web Risks

Infosec -- Threatpost - Aamir Lakhani, cybersecurity researcher for Fortinet's FortiGuard Labs, discusses criminals flocking to web server and browser attacks, and what to do about it.

April 11, 2021 07:10 PM