Cybersecurity News
Secure Your Home Wi-Fi Network
Be aware of all the devices connected to your home network, including baby monitors, gaming consoles, TVs, appliances or even your car. Ensure all those devices are protected by a strong password and/or are running the latest version of their operating system.15 April 2021
Thycotic & Centrify Merge to Form Cloud Identity Security Firm
The combined entity will expand on both companies' privileged access management tools and expects to debut a new brand this year.14 April 2021
Security Bug Allows Attackers to Brick Kubernetes Clusters

14 April 2021
CISA Urges Caution for Security Researchers Targeted in Attack Campaign
The agency urges researchers to take precautions amid an ongoing targeted threat campaign.14 April 2021
Ransomware Attack Creates Cheese Shortages in Netherlands

14 April 2021
FBI Operation Remotely Removes Web Shells From Exchange Servers
A court order authorized the FBI to remove malicious Web shells from hundreds of vulnerable machines running on-premise Exchange Server.14 April 2021
FBI Clears ProxyLogon Web Shells from Hundreds of Orgs

14 April 2021
A Post-Data Privacy World and Data-Rights Management

14 April 2021
The CISO Life Is Half as Good

14 April 2021
100,000 Google Sites Used to Install SolarMarket RAT

14 April 2021
Bolstering Our Nation's Defenses Against Cybersecurity Attacks
Shawn Henry, former Executive Assistant Director of the FBI and current CrowdStrike president of services and CSO, shares the top three cybersecurity priorities that the Biden administration needs to address.14 April 2021
Dependency Problems Increase for Open Source Components
The number of components in the average application rose 77% over two years. No wonder, then, that 84% of codebases have at least one vulnerability.14 April 2021
Microsoft Has Busy April Patch Tuesday with Zero-Days, Exchange Fixes

14 April 2021
FBI hacks vulnerable US computers to fix malicious malware

US justice department says bureau hacked devices to remove malware from insecure software
The FBI has been hacking into the computers of US companies running insecure versions of Microsoft software in order to fix them, the US Department of Justice has announced.
The operation, approved by a federal court, involved the FBI hacking into “hundreds” of vulnerable computers to remove malware placed there by an earlier malicious hacking campaign, which Microsoft blamed on a Chinese hacking group known as Hafnium.
Related: Documents reveal FBI head defended encryption for WhatsApp before becoming fierce critic
Continue reading...14 April 2021
Test-DEU-169665
President Biden has nominated Jen Easterly as the new director of CISA and is expected to nominate Chris Inglis as the first national cyber director.14 April 2021
Privacy
Privacy is more than just settings in your social media account or using the Tor Browser. Your data and actions are collected in a variety of ways. The more aware you are of just how much of your data is collected, the better you can protect it.14 April 2021
Microsoft Patch Tuesday, April 2021 Edition
Microsoft today released updates to plug at least 110 security holes in its Windows operating systems and other products. The patches include four security fixes for Microsoft Exchange Server -- the same systems that have been besieged by attacks on four separate (and zero-day) bugs in the email software over the past month. Redmond also patched a Windows flaw that is actively being exploited in the wild.13 April 2021
DNS Vulnerabilities Expose Millions of Internet-Connected Devices to Attack
Researchers uncover a fresh set of nine vulnerabilities in four TCP/IP stacks that are widely used in everything from powerful servers and firewalls to consumer IoT products.13 April 2021
NSA Alerted Microsoft to New Exchange Server Vulnerabilities
Microsoft today patched 114 CVEs to address the Exchange Server flaws, more than 50 remote code execution vulnerabilities, and one zero-day.13 April 2021
Compromised Microsoft Exchange Server Used to Host Cryptominer
Researchers say an unknown attacker is targeting vulnerable Exchange Servers with a payload hosted on a compromised Exchange Server.13 April 2021