Cyber Security News & Trends – 05-10-19
This week, SonicWall CEO Bill Conner is interviewed by SC Magazine, a Zero-Day vulnerability travelled around the world without ever being disclosed publicly, and Facebook are working to prevent election meddling in Europe.
SonicWall Spotlight
In Focus: SonicWall CEO Bill Conner – SC Magazine
- SonicWall CEO Bill Conner joins Illena Armstrong of SC Magazine in an exclusive video interview. They discuss what companies are missing in the global cyber arms race, the non-traditional points of entry where the threats are emerging and what steps an organization can take to secure its infrastructure.
Cyber Security News
The Strange Journey of an NSA Zero-Day into Multiple Enemies’ Hands – Wired
- Wired tell the story of an NSA-discovered zero-day vulnerability that made its way around the globe over several years; first intercepted by China, then stolen by hackers before being picked up by North Korea and Russia, all without being publicly disclosed.
Facebook Opens a Command Post to Thwart Election Meddling in Europe – New York Times
- After the harsh criticism it faced following the 2016 US election Facebook has opened a “command post” in Ireland charged with preventing any meddling in the upcoming European election.
- Over $40 million worth of bitcoin has been stolen from Binance, one of the world’s largest cryptocurrency exchanges, in a “large scale security breach.” The well-organized attack managed to bypass the security checks and exited over 7,000 bitcoin, about 2% of total holdings.
Cybersecurity Jobs Abound. No Experience Required. – Wall Street Journal
- Large tech companies are scrambling to hire hundreds of thousands of corporate hackers to defend their networks and data, pursuing workers without traditional four-year degrees or formal experience.
How to Close the Critical Cybersecurity Talent Gap – Dark Reading
- “If we don’t change our ways, the gap will keep getting worse.” Dark Reading commentator Thomas Weithman calls for “outside-the-box thinking” to bridge the cybersecurity talent gap, suggesting introducing cybersecurity curriculum in K-12 courses and setting up programs to allow people in a similar industry to retrain.
Russian Cyberspies Are Using One Hell of a Clever Microsoft Exchange Backdoor – ZDNet
- An email backdoor named LightNeuron that integrates directly with Microsoft Exchange is being called “one of the most complex backdoors ever spotted.” Despite being in use since 2014 it has avoided detection until very recently.
Amazon Hit by Extensive Fraud With Hackers Siphoning Merchant Funds – Bloomberg
- A court filing has revealed that Amazon believes it was the victim of a “serious” online attack between May and October 2018. Hackers accessed around 100 seller accounts and funneled cash from loans or sales into their own bank accounts.
TRON Critical Security Flaw Could Break the Entire Blockchain – ZDNet
- A critical vulnerability with a “high” severity rate has been found in the TRON network’s TRX cryptocurrency. If exploited the vulnerability could render the entire network unusable.
Without Strong Cybersecurity, Backdoors Will Remain Open – Silicon Republic
- Former Europol Executive Director John O’Mahony is warning that not enough companies and individuals have “even adequate cybersecurity” in place to prevent bad actors exploiting backdoors in their networks.
In Case You Missed It
- Cryptojacking Apocalypse: Defeating the Four Horsemen of Cryptomining – Brook Chelmo
- ‘Federal Tech Talk’ Hosts SonicWall CEO Bill Conner to Examine Cybercriminal Strategies that Threaten Federal Agencies – Geoff Blaine
- Dragonblood Vulnerability: Is your WiFi secure? – Srudi Dineshan
- What to Look for in a CASB Solution – Ganesh Umapathy
- New PDF Fraud Campaign Spotlights Shifting Cybercriminal Phishing Tactics – Dmitriy Ayrapetov
- Stopping PDF Attacks: 5 Ways Users & Organizations Can Work Together – Brook Chelmo
