720-891-1663

September 25, 2022

  • CISA Says Dataprobe PDUs used in Critical Infrastructure Vulnerable
  • Unpatched 15-year-old Python Bug Allows Code Injection in 350,000 Projects
  • HP Failed to Patch Firmware for a Year
  • Industrial Control Systems Have Joined the General Computer World with their own Patch Tuesday Mess
  • NSA and CISA Release CONTROL SYSTEM DEFENSE: KNOW THE OPPONENT
  • New As-A-Service Offering on the Dark Web
  • Microsoft Disabling (Officially) Teams Meeting Add-in for Outlook Since it Seems to Disable itself Anyway
  • Key Bank Hit with Potential Class Action Over Vendor Breach Claims Negligence
  • The Feds Launch $1 Billion Cyber Grant Program for SLTT Governments
  • Foreign Regulators Fine Facebook, Meta, Instagram Over Privacy Settings
  • Shareholders File Suit Against Twitter After Mudge Testifies to Congress
  • MFA Fatigue – What is it and How do I Protect Myself/ My Company
  • Grand Theft Auto Breached
  • Ransomware Knocks Suffolk County (NY) Back into the 1900s
  • American Airlines Hacked In July, Announced it Now
  • Michigan School District Closed for Second Day Due to Cyberattack
  • Cryptocurrency Market Maker Wintermute Loses $160 Mil to Hackers – Says Everything is Fine
  • South America is Under Cyber Attack

Security News Bites for the Week Ending September 23rd, 2022
Security news for this week: Twitter says there was at least one Chinese spy working at Twitter.
Uber says not to worry about this new breach – it was a contractor’s account that was
compromised. GPS jammers being used to hijack trucks and down drones. Yet another cyber
attack turned physical. Kim Kardashian being sued as an influencer. North Korean hackers
target US energy companies.

Do you have Internet of Things, Industrial Internet of Things or Medical Internet of Things
devices in your network? Do you need to review your security practices for IoT, IIoT or
MIoT devices? Please contact us.


Mitch

Read the details here.

September 18, 2022

  • Not a Great Week For Uber – Lying About Old Breach, Investigating New Breach
  • Major WFH/WFA Risk to Businesses – Employees Viewing Pirated Content
  • CISA Warns of Water Tank Management System Attack
  • FBI Warns of Risks of Using Unpatched Medical Devices
  • It’s 10 PM, Do You Know Where Your Passwords Are?
  • Microsoft Stores Teams Auth Tokens in the Clear, Might Patch it in the Future
  • US to Step Up Semiconductor Export Restrictions
  • Is The Proposed National Privacy Law a Good Thing
  • Kentucky Town Knocked Off the Internet Due to Cyberattack
  • Texas Oakbend Medical Center Struggling to Come Back Online After Two Weeks

Security News Bites for the Week Ending September 16th, 2022
Security news for this week: One more time a vendor admits their hardware is buggy and they
are not going to fix it. Google completes $5 billion purchase of Mandiant. Microsoft issues last
warning about authentication changes. Mandiant says North Korea spreading trojanized
versions of software and botched cyber attack turns into physical attack and lands the attacker
in jail.

I

If you allow employees to work from anywhere and you are concerned about creating
new ways for malware to get into your system (see the alert above), we have some
solutions for you. Please contact us.


Mitch

Read the details here.

September 11, 2022

  • Millions of Arris Routers are Vulnerable to Attack
  • Cloudflare Dumps Kiwi Farms
  • Watchguard Patches Pre-Authentication Critical Bug
  • Cybersecurity Radio
  • KeyBank Says Hackers Stole Mortgage Data … From Third Party Service Provider
  • IRS Data Breach Exposes Data on 120,000
  • LA Unified School District Hit by Cyberattack

Security News Bites for the Week Ending September 9th, 2022
Security news for this week: Five reasons to replace your old router. China doesn’t like it when
the shoe is on the other foot. CISA warns of a potential attack that would take down all Contec
devices on a hospital’s network. Coinbase funds lawsuit complaining about the Tornado crypto
mixer ban and Yandex taxi hack created a traffic jam in Moscow.

If you have considered segmenting your network and data but don’t know where to start,
please contact us.
Mitch

Read the details here.

September 2, 2022

  • Yet Another Spyware Gets Caught in the Headlights
  • Hackers Are Hiding Malware in James Webb Telescope Images
  • New Background Check Restrictions for 2022
  • Duck, Duck, Go Expands Beta of Private Email to Everyone
  • Apple Backports Patch to Older Devices
  • 2023 NDAA Bill Bans Feds from Buying Insecure Software – Sort of
  • Securing the Software Supply Chain
  • Doordash admits hackers stole data in Twilio breach
  • Plex tell users to change passwords after breach
  • Vendor OneTouchPoint Breach Exceeds 2 Million Users

Security News Bites for the Week Ending September 2nd, 2022
Security news for this week: Why PREVENTING ransomware is the only option. Library
supplier Baker & Taylor hit by ransomware. Bionic Beaver bug knocks Azure VMs offline. Pay
the ransom and get your data leaked anyway. Former Denver teachers withdraw guilty pleas in
cyber espionage case. Read the details here.

If you have considered segmenting your network and data but don’t know where to start,
please contact us.
Mitch

Read the details here.

Copyright © 2024 CyberCecurity, All rights reserved. Privacy Policy