Calendar Events Planned
You have shown some interest .... Please browse the content below for some events you may be interested in
RSVP ticket awaits you right here!!RSS feeds for a little learning and lit reading
Cloud Security
- Securing Your Move to the Hybrid CloudInfosec expert Rani Osnat lays out security challenges and offers hope for organizations migrating their IT stack to the private and public cloud environments.
- 380K Kubernetes API Servers Exposed to Public InternetMore than 380,000 of the 450,000-plus servers hosting the open-source container-orchestration engine for managing cloud deployments allow some form of access.
- Deep Dive: Protecting Against Container Threats in the CloudA deep dive into securing containerized environments and understanding how they present unique security challenges.
- Security Turbulence in the Cloud: Survey Says…Exclusive Threatpost research examines organizations’ top cloud security concerns, attitudes towards zero-trust and DevSecOps.
- Firms Push for CVE-Like Cloud Bug SystemResearchers propose fresh approaches to cloud-security bugs and mitigating exposure, impact and risk.
Critical Infrastructure
- U.K. Water Supplier Hit with Clop Ransomware AttackThe incident disrupted corporate IT systems at one company while attackers misidentified the victim in a post on its website that leaked stolen data.
- Latest Cyberattack Against Iran Part of Ongoing CampaignIran's steel manufacturing industry is victim to ongoing cyberattacks that previously impacted the country's rail system.
- ‘Killnet’ Adversary Pummels Lithuania with DDoS Attacks Over BlockadeCyber collective Killnet claims it won’t let up until the Baltic country opens trade routes to and from the Russian exclave of Kaliningrad.
- U.S. Water Utilities Prime Cyberattack Target, ExpertsEnvironmentalists and policymakers warn water treatment plants are ripe for attack.
- Verizon Report: Ransomware, Human Error Among Top Security Risks2022’s DBIR also highlighted the far-reaching impact of supply-chain breaches and how organizations and their employees are the reasons why incidents occur.
The World of IoT
- Cybercriminals Are Selling Access to Chinese Surveillance CamerasTens of thousands of cameras have failed to patch a critical, 11-month-old CVE, leaving thousands of organizations exposed.
- Starlink Successfully Hacked Using $25 ModchipBelgian researcher Lennert Wouters revealed at Black Hat how he mounted a successful fault injection attack on a user terminal for SpaceX’s satellite-based internet system
- U.S. Water Utilities Prime Cyberattack Target, ExpertsEnvironmentalists and policymakers warn water treatment plants are ripe for attack.
- Taming the Digital Asset TsunamiRob Gurzeev, CEO and Co-Founder of CyCognito, explores external attack surface soft spots tied to an ever-expanding number of digital assets companies too often struggle to keep track of and manage effectively.
- EnemyBot Malware Targets Web Servers, CMS Tools and Android OSMalware borrows generously from code used by other botnets such as Mirai, Qbot and Zbot.
The Heavy load of Mobile Security……..
- iPhone Users Urged to Update to Patch 2 Zero-DaysSeparate fixes to macOS and iOS patch respective flaws in the kernel and WebKit that can allow threat actors to take over devices and are under attack.
- Xiaomi Phone Bug Allowed Payment ForgeryMobile transactions could’ve been disabled, created and signed by attackers.
- Google Boots Multiple Malware-laced Android Apps from MarketplaceGoogle removed eight Android apps, with 3M cumulative downloads, from its marketplace for being infected with a Joker spyware variant.
- Leaky Access Tokens Exposed Amazon Photos of UsersHackers with Amazon users’ authentication tokens could’ve stolen or encrypted personal photos and documents.
- Google Warns Spyware Being Deployed Against Android, iOS UsersThe company is warning victims in Italy and Kazakhstan that they have been targeted by the malware from Italian firm RCS Labs.
Are you Vulnerable? find out here
- Ransomware Attacks are on the RiseLockbit is by far this summer’s most prolific ransomware group, trailed by two offshoots of the Conti group.
- Cybercriminals Are Selling Access to Chinese Surveillance CamerasTens of thousands of cameras have failed to patch a critical, 11-month-old CVE, leaving thousands of organizations exposed.
- Firewall Bug Under Active Attack Triggers CISA WarningCISA is warning that Palo Alto Networks’ PAN-OS is under active attack and needs to be patched ASAP.
- iPhone Users Urged to Update to Patch 2 Zero-DaysSeparate fixes to macOS and iOS patch respective flaws in the kernel and WebKit that can allow threat actors to take over devices and are under attack.
- Google Patches Chrome’s Fifth Zero-Day of the YearAn insufficient validation input flaw, one of 11 patched in an update this week, could allow for arbitrary code execution and is under active attack.