Saturday, December 5, 2020
Internet Storm Center Infocon Status

LATEST

Top 20 Predictions Of How AI Is Going To Improve Cybersecurity In 2021

What 20 Leading Cybersecurity Experts Are Predicting For 2021
SecurityWeek

Italy Says Two Arrested for Defense Data Theft

Two people have been arrested for stealing defense data from the Italian aerospace and electronics group Leonardo, the interior ministry said on Saturday. The company has a wide range of activities from naval electronics, network and protection systems, electronic warfare...
The CyberWire Podcast

SSL-based threats remain prevalent and are becoming increasingly sophisticated. [Research Saturday]

While SSL/TLS encryption is the industry standard for protecting data in transit from prying eyes, encryption has, itself, become a threat. It is often leveraged by attackers to sneak malware past...
ZDNet

Ransomware hits helicopter maker Kopter

Data from Kopter's internal network has been published on the LockBit gang's blog, hosted on the dark web.
Unsuperivsed Learning Podcast

How Reading and Meditation Extend Life

How fiction, biographies, and Vipassana meditation can give you extra time on the planet.
ZDNet

Ransomware gangs are now cold-calling victims if they restore from backups without paying

Tactic used since August by ransomware gangs like Sekhmet, Maze, Conti, and Ryuk.
Open Source Security Podcast

Episode 230 – Door 05: 5 reasons you need 24/7 robot monitoring

Josh and Kurt talk about why you need 24/7 monitoring of all the things Links Swiss air force office hours DC-10 cargo door
SC Magazine

Kmart, a vulnerable target, among those hit in Egregor ransomware attack spree

The fast-moving Egregor ransomware added Kmart to its list of retail targets, one day before the same attack group hit the Vancouver metro. The fast-moving Egregor ransomware has already hit other recognizable companies, most notably Barnes and Noble. Egregor first...
Security Weekly

The Whole Crew's Awesome – PSW #676

This week, Vicarius' very own Roi Cohen and Gilad Lev join us to kick off the show with a technical segment titled "From Chaos to Topia"! Jeff Capone from SecureCircle joins us for an interview on zero trust data...
Bruce Schneier

Friday Squid Blogging: Bigfin Squid Found in Australian Waters

A bigfin squid has been found — and filmed — in Australian waters for the first time. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Read my...

Microsoft Cloud Security Exec Talks New Tech, WFH, Gamification

Gunter Ollman explains the benefits of CPSM technology, how IT security teams have evolved, and how the pandemic has shaped security.

Kmart Hit by Egregor Ransomware

Egregor is also behind recent attacks on UbiSoft and Barnes & Noble.
Security Weekly

Krebs, UEFI Trickboot, Slack, & Docker Vulns – Wrap Up – SWN #86

This week, Dr. Doug talks Krebs, slack, docker vulnerabilities, Jeff Man finds fake news, a massive IoS article, and UEFI, all this and show wrap ups on the Security Weekly News Wrap Up!   Show Notes: https://securityweekly.com/swn86 Visit https://www.securityweekly.com/swn...

Rusty but intact: Nazi Enigma cipher machine found in Baltic Sea

Enlarge / The Enigma cipher machine found in the Baltic Sea is lying on a table in front of the archaeological office of Schleswig-Holstein. After its discovery, the machine was handed over to the office by research diver Huber....
ZDNet

Johnson & Johnson CISO: Healthcare orgs are seeing nation-state attacks every single minute of every single day

Johnson & Johnson is one of six COVID-19 research companies that have been recently targeted by North Korean state-sponsored hackers.
Bruce Schneier

The 2020 Workshop on Economics and Information Security (WEIS)

The workshop on Economics and Information Security is always an interesting conference. This year, it will be online. Here’s the program. Registration is free.

BECs and EACs: What's the Difference?

Email accounts are common targets for attack. Understanding how attack types differ is critical for successful defense.
The CyberWire Podcast

2021 may look a lot like 2020 in cyberspace, only moreso. Cold chain cyberespionage. Cybercriminals are also interested in COVID-19 vaccines. And beware of online dog fraud.

Predictions for 2021 focus on ransomware: it’ll be better, more aggressive, bigger, and a greater problem in every way. Cyberespionage and the cold chain. Cybercriminal interest in COVID-19 vaccines extends to...
Security Affairs

Recently disclosed CVE-2020-4006 VMware zero-day was reported by NSA

VMware addressed CVE-2020-4006 zero-day flaw in VMware Workspace One Access, Access Connector, Identity Manager, and Identity Manager Connector. VMware has finally released security updates to fix the CVE-2020-4006 zero-day flaw in VMware Workspace One Access, Access Connector, Identity Manager, and Identity Manager Connector. At...
SC Magazine

Google discovers exploit devised to steal iPhone data remotely, without user interaction

An Apple Store in London. (Jon Rawlinson, CC BY 2.0 https://creativecommons.org/licenses/by/2.0, via Wikimedia Commons) Apple last May patched a vulnerability in the Apple Wireless Direct Link (AWDL) protocol that can be remotely exploited to steal data from an iPhone and...
SC Magazine

Potential national cybersecurity director inches towards reality

Incoming president Joe Biden will likely have a new post to fill: national cybersecurity director.   The final draft of the National Defense Authorization Act, one of the few true must-pass annual bills, contains a provision calling for a Senate-confirmed position to orchestrate cyber strategy and coordinate incident response. The position would, in...
SecurityWeek

As Hospitals Cope With a COVID-19 Surge, Cyber Threats Loom

With COVID-19 Infections and Hospitalizations Climbing, Health Care Providers Are Dangerously Vulnerable to Cyberattacks By late morning on Oct. 28, staff at the University of Vermont Medical Center noticed the hospital’s phone system wasn’t working. read more

AI Collaborative Research Institute Launched

AI Collaborative Research Institute Launched A trio of companies is launching a new research institute whose intended purpose is to strengthen privacy and trust for decentralized artificial intelligence (AI).  The Private AI Collaborative Research Institute, originally established by Intel's University Research...
SecurityWeek

VMware Patches Workspace ONE Access Vulnerability Reported by NSA

VMware on Thursday released patches for a Workspace ONE Access security flaw that was identified and reported by the National Security Agency (NSA). read more

Intel Doubles Down on Emerging Technologies for Sharing and Using Data Securely

Homomorphic encryption and federated learning could allow groups to share data and analysis while protecting the actual information.
638FollowersFollow

LEADERS

Bruce Schneier

Friday Squid Blogging: Bigfin Squid Found in Australian Waters

A bigfin squid has been found — and filmed — in Australian waters for the first time. As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered. Read my...
Bruce Schneier

The 2020 Workshop on Economics and Information Security (WEIS)

The workshop on Economics and Information Security is always an interesting conference. This year, it will be online. Here’s the program. Registration is free.
Bruce Schneier

Enigma Machine Recovered from the Baltic Sea

Neat story: German divers searching the Baltic Sea for discarded fishing nets have stumbled upon a rare Enigma cipher machine used by the Nazi military during World War Two which they believe was thrown overboard from a scuttled submarine. Thinking they...
Brian Krebs

IRS to Make ID Protection PIN Open to All

The U.S. Internal Revenue Service (IRS) said this week that beginning in 2021 it will allow all taxpayers to apply for an identity protection personal identification number (IP PIN), a single-use code designed to block identity thieves from falsely...
Graham Cluley

Metro Vancouver TransLink hit by Egregor ransomware attack, travellers disrupted

Passengers on Vancouver's transit system were unable to use their credit and debit cards for ticket payments after the service was badly hit by a ransomware attack. TransLink, the public transport operator in Vancouver, Canada, first indicated its IT systems...