December 25, 2022

• Godfather Banking Trojan is Back, Badder than Ever

• Hacked RING (Amazon) Doorbell Cams Used to Record Police Swatting of Victims

• Madison Square Garden Uses Facial Recognition to Bar Attorneys Suing Them

• Google Rolls Out Beta for Client Side Encryption for Some Customers

• Google Releases Vulnerability Scanner for Open Source Software Developers
• Nvidia Patches 29 Driver Bugs that Could Lead to Device Takeover
• EU Moves Closer to Deal with US on Data Transfer
• Biden Signs Post-Quantum Cybersecurity Bill into Law
• Third Party Service Provider Attacks Continue – Avem Health Partners
• Guardian Newspaper Hit by Ransomware Attack
• Knox College Hit by Ransomware Attack

Security News Bites for the Week Ending December 23rd, 2022
Security news for this week: Chris Inglis is leaving the White House as cyber director,
Rackspace says that email ransomware victims only represent 1% of their business, Infragard
membership data on 80,000 for sale, Russians, American smuggle electronics, ammo from
America to Russia and Congress passes bill to ban TikTok from Federal devices.

Want to use ad blocker technology but don’t know how to proceed? Need help? Please
contact us.

Mitch

Read the details here.

December 18, 2022

• Cisco Discloses High-Severity IP Phone Bug Including Exploit Code

• Microsoft Suspends Several Third-Party Developer Accounts that Signed Malicious Drivers

• GitHub Rolls Out Secret Scanning for All Public Repositories

• Apple Wants to Keep up With the Cool Kids – Patches Tenth Zero Day of 2022

• Microsoft’s December Update Patches Two Zero-Days, Including One Being Exploited
• Utah and Alabama Join Other State Governments in Banning TikTok on Gov Computers
• SEC Charges Crew of Social Media Influencers with $100 Million Fraud
• Six Pillars of Dev-Sec-Ops
• Rackspace Continues to Slog Through Recovery Efforts
• CommonSpirit Health Releases Update on Cyber Attack
• Another Day, Another Uber Breach

Security News Bites for the Week Ending December 16th, 2022
Security news for this week:Rackspace tells its 300,000 customers that the impact of
ransomware was limited due to their great incident response (not?), Twitter dissolved its trust
and safety council, free speech is good – sort of, Microsoft to disable Internet Explorer in
February and TikTok could be banned by a new bill. Read the details here.

We continue to see vendor attacks like the ones recently against Rackspace and Uber.
Do you have the right contract and due diligence in place? Need help? Please contact
us.

Mitch
www.CyberCecurity.com
www.TurnkeyCybersecurityAndPrivacySolutions.com
Mitch@CyberCecurity.com
720-891-1663

Read the details here.

December 9, 2022

• FCC Cracks Down on ‘Ringless Voicemails’

• PCI Software Security Framework

• Apple Rolls Out End to End Encryption for iCloud Backups and Data

• Apple Rolls out New Security Features

• British Companies Fear New Law Requiring Them to Report Hacks
• Web Scraping Law 101
• Antwerp’s Digital Services Down After Cyberattack
• Multiple Government Departments in New Zealand Affected by Ransomware Attack on IT Provider
• The Metropolitan Opera

Security News Bites for the Week Ending December 9th, 2022
The security news for this week includes: Rackspace admits outage related to ransomware,
South Carolina and South Dakota governors banned TikTok on state computers, air gapped
networks vulnerable to DNS attacks, Twitter to introduce new controls for ad placement and
Pentagon released next try at cloud contract.

We continue to see vendor attacks like the ones this week against Rackspace and
Sequoia One. Who gets hit by the lawsuits though, is you. That means you need to have
the right contract and due diligence in place. Need help? Please contact us.

Mitch
www.CyberCecurity.com
www.TurnkeyCybersecurityAndPrivacySolutions.com
Mitch@CyberCecurity.com
720-891-1663

Read the details here.

December 2, 2022

• The Effect of Lawsuits on Large Financial Institutions’ Security Practices

• Draft Kings Betting Website Customers Watch Their Bank Accounts go to Zero While Unable to Contact Company

• DoD Releases Zero Trust Strategy Roadmap

• Microsoft November Patch Causes Some Domain Controllers to Freeze, Restart

• Google Patches 8th Zero Day this Year
• Crooks Are Not Even Safe in Estonia
• What is a Zettabyte?
• Infrastructure Resilience Planning Framework (IRPF)
• Hackers of Australian Insurer Continue Slow Drip of Patient Data
• Moldova – Hack and Leak
• Another California County Announces a Data Breach
• Cincinnati State College one of Several Schools Added to Ransomware Leak Sites on Thanksgiving

Security News Bites for the Week Ending November 25th, 2022
The security news for this week includes the great crypto-cop brain drain, New York attorneys
required to take one hour of security and privacy training every two years, the man who cleaned
up Enron says FTX is a bigger mess, repair techs snoop on and copy your data and tech
support scam emails on the rise. Read the details here.
If you are dealing with your own version of zettabytes of data and need help managing
the data and the risk, please contact us.
Mitch
www.CyberCecurity.com
www.TurnkeyCybersecurityAndPrivacySolutions.com
Mitch@CyberCecurity.com
720-891-1663

Read the details here.