RSS Feeds: News and Views

KrebsOnSecurity

• Fake CISO Profiles on LinkedIn Target Fortune 500s
• Accused Russian RSOCKS Botmaster Arrested, Requests Extradition to U.S.
• SIM Swapper Abducted, Beaten, Held for $200k Ransom
• Botched Crypto Mugging Lands Three U.K. Men in Jail
• Say Hello to Crazy Thin ‘Deep Insert’ ATM Skimmers

Internet Security Alliance

• ISA PROPOSAL FOR A VIRTUAL CYBERSECURITY NATIONAL SERVICE ACADEMY
• TOP TEN REASONS FOR A VIRTUAL CYBERSECURITY SERVICE ACADEMY (Part 1)
• THE CASE FOR A NATIONAL CYBERSECURITY ACADEMY, PART 2
• THE CASE FOR A NATIONAL CYBERSECURITY ACADEMY, PART 1: A NATIONAL DEFENSE IMPERATIVE
• IT IS TIME FOR A NATIONAL CYBER SERVICES ACADEMY

Schneier on Security

• Security Vulnerabilities in Covert CIA Websites
• Differences in App Security/Privacy Based on Country
• Cold War Bugging of Soviet Facilities
• New Report on IoT Security
• Leaking Passwords through the Spellchecker

JMBM Cybersecurity Lawyer Forum

• California Consumer Privacy Act and Employee Personal Information
• Privacy Policies – Some Simple Lessons
• Facing the Knowledge Gap
• The New Privacy Laws – What You Need to Do Now – Data Minimization
• The Supply Chain Risk Conundrum: Rethinking the Network and Its Risks

Steptoe Cyberblog

• Episode 423: President DeSantis’s First Supreme Court Nominee
• Episode 422: Judge Oldham Bails Out Texas
• Episode 421: Congressional Session of the Living Dead
• 420: All the Cyberlaw You Missed in August
• Episode 419: Cyber Persistence

Bank Info Security

Error: Feed has an error or is not valid.

CPO Magazine

• Entering the Metaverse – Are Retailers Prepared for the Next Stage of Digital Transformation?
• DevSecOps Overwhelmed by Backlogs, Significant Time and Money Being Lost to Vulnerability Management
• 4 Ways To Introduce Robust Security Controls — Without Overburdening Employees
• Organized Credit Card Fraud Groups Create Fake Sites To Run Charges on Stolen Credit Cards
• Indonesia Data Protection Law Includes Potential Prison Time, Asset Seizure, Right to Compensation for Data Breaches

Omnistruct

• How Investing in Cybersecurity can Reduce Legal Risk
• MSP News – April 1, 2022
• Small Business Entrepreneur Cybersecurity News – April 1, 2022
• Regulations, Frameworks, and Controls – April 1, 2022
• Enterprise Leadership News – April 1, 2022

WeLiveSecurity by eset

• Protecting teens from sextortion: What parents should know
• What happens with a hacked Instagram account – and how to recover it
• What to consider before disposing of personal data – Week in security with Tony Anscombe
• 5 tips to help children navigate the internet safely
• Hey WeLiveSecurity, how does biometric authentication work?

Security Intelligence by IBM

Error: Feed has an error or is not valid.

Naked Security by Sophos

• URGENT! Microsoft Exchange double zero-day – “like ProxyShell, only different”
• S3 Ep102: How to avoid a data breach [Audio + Transcript]
• Optus breach – Aussie telco told it will have to pay to replace IDs
• WhatsApp “zero-day exploit” news scare – what you need to know
• Uber and Rockstar – has a LAPSUS$ linchpin just been busted (again)?

Threatpost

• Student Loan Breach Exposes 2.5M Records
• Watering Hole Attacks Push ScanBox Keylogger
• Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
• Ransomware Attacks are on the Rise
• Cybercriminals Are Selling Access to Chinese Surveillance Cameras

Dark Reading

• With the Software Supply Chain, You Can't Secure What You Don't Measure
• Onyxia Raises $5M to Help Companies Proactively Manage Cybersecurity Risks Using AI
• Cyera Survey Finds One in Three Respondents Want to Minimize Cloud Data Risk
• Safous Adds Browser Isolation to Its Zero-Trust Network Access Service
• Israel Cybersecurity Enterprise (ICE) Teams with CybeReady to Deliver World-Class Security Training

Ars Technica

• Numerous orgs hacked after installing weaponized open source apps
• Meta announces Make-A-Video, which generates video from text
• Never-before-seen malware has infected hundreds of Linux and Windows devices
• Cloudflare’s CAPTCHA replacement lacks crosswalks, checkboxes, Google
• DALL-E image generator is now open to everyone

Tech Republic

• How Multilayered Security Features Help Protect Modern Devices from New Threats
• New Chaos malware spreads over multiple architectures
• Report finds women are declining CISO/CSO roles
• Launch an IT career after taking these eight courses for under $50
• CloudBees CEO: Software delivery is now ‘release orchestration’

CSHub

• The top 20 cyber security movers and shakers 2022
• Two thirds of companies spending more on cyber security in 2022
• Over two fifths of security professionals are investing in endpoint security
• Data breaches on gaming sites are becoming more common
• CISO considerations for managed XDR investment

The Record

• Cyberattacks on Taiwan started several days before Pelosi arrival: report
• Former NSA employee charged with offering to sell cyber secrets to foreign gov’ts
• Semiconductor industry faced 8 attacks from ransomware groups, extortion gangs in 2022
• Finnish intelligence warns Russia ‘highly likely’ to turn to cyber in winter
• Text scams leveraging IRS’s name to steal info have ‘increased exponentially’