February 26, 2022

If You Want Crappy MFA on Twitter, It is Going to Cost You Starting Next Month
California Department of Financial Protection and Innovation Launched Crypto Scam Tracker
Samsung Adds Zero-Click Attack Protection to Galaxy Devices
Fortinet Patches Bugs in FortiNAC and Fortiweb Scoring 9.8 on the Oh S**t Meter
Housing Giant CoreLogic Buys Mortgage Fintech Roostify
NY FBI Office Network Hacked

Security News Bites for the Week Ending February 24th, 2023

This week’s security news bites: European governments want to be able to snoop on all of our
communications. The CIA says Russia is working to close down US intel-unsuccessfully. The
NLRB rules that non-disparagement and gag clauses in exit packages are illegal. Facebook to
penalize non-paying users with worse support, higher risk. CommonSpirit Health says their
ransomware attack has cost them $150 million so far.

Read the details here.

The hackers keep improving their game. Hardware and software vendors try to keep up,
but it is hard. Then you have to worry about whether your users are doing the right
things. If you are concerned that you might not be keeping up, please contact us...
Mitch
www.CyberCecurity.com
www.TurnkeyCybersecurityAndPrivacySolutions.com
Mitch@CyberCecurity.com
720-891-1663

February 19, 2022

Israeli Security Expert Found to be Manipulating Elections Worldwide
IoT Security Flaws Affect Critical Infrastructure
NSA Releases Guidance on IPv6 Security
Apple Patches Actively Exploited Zero-Day in iOS, macOS
CISA Alerts on Four Zero-Days for Windows and iOS
As I Said Last Week, Just Because it is Useful to You Does Not Mean it is Legal
Russian National with Ties to Putin Convicted in $90 Million Insider Trading Scheme
Tom Brady and His Ex- Learned the Hard Way about Cryptocurrency
How to Avoid Gift Card Scams
Oakland and Modesto California Hit by Ransomware Attack at Same Time
Israel’s Premier Technical University, Technion, Hit by Ransomware
Largest Pepsi Bottler in US Hit by Data Breach
Telecommunications Companies are the Target of the Day

Security News Bites for the Week Ending February 17th, 2023
Security news bites for this week: BlackCat leaks Irish University’s hacked data. Adversarial
face recognition. Sanctioned crypto mixer Blender rises from the dead. Kia/Hyundai rolls out
software updates as insurers refuse to insure their cars. Threema disputes claims of encryption
flaw and EU parliament urges European Commission not to approve new US-EU privacy deal.
Read the details here.

As mentioned above, Pepsi Ventures was hacked and the information stolen was a gold
mine for the thieves. Pepsi can afford to write the large checks that they will no doubt be
required to write, but this is an alert to employers regarding what information they are
keeping and, more importantly, how that information is being secured. If it turns out that
Pepsi didn’t really have good controls in place, the penalties could be very large. If you
are not sure whether your sensitive employee data is safe, please contact us.

Mitch
www.CyberCecurity.com
www.TurnkeyCybersecurityAndPrivacySolutions.com
Mitch@CyberCecurity.com
720-891-1663

February 12, 2022

Amazon to (Finally) Block Public Access to S3 Buckets by Default – But Only for New Buckets
Potential Side Effect of Ban of TikTok by Government/Corporate Entities
VMWare ESXi Under New Attack says CISA; Prevents Recovery
NIST Announces Standard for IoT Encryption and Hashing
Google Rolls Out Bard to Compete with Microsoft’s $10 Billion Investment in ChatGPT
One More Time – Multiple New Security Flaws in OpenSSL
In Honor of Valentine’s Day
Irish University Hit by Ransomware, Closes Campuses
Online Grocery Service, Weee! Hacked, Leaks 1 Million+ Accounts
Regal Medical Group Ransomware Exposes Patient Data of 3.3 million

Security news bites for this week: If you think the Chinese balloon incident is a major wake-up
call… European police hack encrypted messaging app, arrest dozens. Auto dealers are prime
targets for hackers. Hackers are going old school and in the AI wars, google loses $100 billion
in valuation while users flock to Microsoft.

Read the details here.

Do you have a software stack that is important to your business? Are you one of the 20
percent that think your application stack is safe? What if you are wrong? Whether you
are part of the 78% or the 22%, now might be a great time to review the security of your
applications. If this keeps you up at night please contact us.

Mitch
www.CyberCecurity.com
www.TurnkeyCybersecurityAndPrivacySolutions.com
Mitch@CyberCecurity.com
720-891-1663

February 5, 2022

The “S” in IoT Stands for Security (Not)
Android Has A “Safe Folder” to Protect Sensitive Files
FAA “Fixes” Human Error that Took Down NOTAM System Last Week
CISA Announces More Bugs, Patches in Siemens, GE and Contec Industrial Control Systems
California AG Announces CCPA Sweep Ahead of Data Privacy Day
CharGPT Stole Your Work – Now What?
Yet Another Unprotected Database on the Internet
Indiana Housing Agency Breaches Data on Over 200k Residents
JD Sports Loses Data on 10 Million Customers
Renewal by Andersen Leaks a Million Files
Tallahassee Hospital Diverting Patients, Canceling Some Surgeries After Cyberattack
Atlantic General Hospital in Maryland “Experiencing Network Disruptions After Attack

Security News Bites for the Week Ending February 3rd, 2023
This week’s security news bites include: Biden administration moves to halt all exports to
Huawei. Popular derivatives trading platform down due to cyber attack. Facebook sues data
scrapers while paying for scraped data. Singapore can now order social media to block content
or be banned itself and Electrify America fast chargers – easy hack.

Read the details here.

Is your ransomware and incident response plan adequate for today’s threat? If you can’t
answer that “yes” with certainty, please contact us.

Mitch
www.CyberCecurity.com
www.TurnkeyCybersecurityAndPrivacySolutions.com
Mitch@CyberCecurity.com
720-891-1663