| In today’s digital landscape where cyberattacks are becoming increasingly sophisticated and prevalent, organizations must adopt a multi-layered approach to safeguard their valuable data. Two critical components of a robust data protection strategy are an isolated recovery environment and an immutable data vault. In this blog post, we will explore the necessity of utilizing both components in the event of widespread cyberattacks. |  |
News: The Fundamentals of Cloud Security Stress Testing
 |
״Defenders think in lists, attackers think in graphs,” said John Lambert from Microsoft, distilling the fundamental difference in mindset between those who defend IT systems and those who try to compromise them. |
Cybercrime: FBI warns of gift card fraud ring targeting retail companies
| The FBI warned retail companies in the United States that a financially motivated hacking group has been targeting employees in their gift card departments in phishing attacks since at least January 2024. |  |
ChatGPT Quip &
|
 |
|
Prompt: Response: Business email compromise (BEC) can lead to a variety of severe consequences for an organization. Here is a bullet list of some of the worst outcomes that could result from such a compromise:
|
News: Botnet sent millions of emails in LockBit Black ransomware campaign
| Since April, millions of phishing emails have been sent through the Phorpiex botnet to conduct a large-scale LockBit Black ransomware campaign. |  |
News: Low-tech tactics still top the IT security risk chart
 |
USB-based attacks, QR codes for phishing and social engineering continue to be some of the most effective, now more dangerous with the help of AI. |
News: It’s Time to Master the Lift & Shift: Migrating from VMware vSphere to Microsoft Azure
| While cloud adoption has been top of mind for many IT professionals for nearly a decade, it’s only in recent months, with industry changes and announcements from key players, that many recognize the time to make the move is now. It may feel like a daunting task, but tools exist to help you move your virtual machines (VMs) to a public cloud provider – like Microsoft Azure – with relative ease. |  |
Cybercrime: Scammers Fake Docusign Templates to Blackmail & Steal From Companies
 |
Cybercriminals are trafficking Docusign assets that allow for easy extortion and business email compromise. |
Cybercrime: Windows Quick Assist abused in Black Basta ransomware attacks
| Financially motivated cybercriminals abuse the Windows Quick Assist feature in social engineering attacks to deploy Black Basta ransomware payloads on victims’ networks. |  |
News: New XM Cyber Research: 80% of Exposures from Misconfigurations, Less Than 1% from CVEs
 |
A new report from XM Cyber has found – among other insights – a dramatic gap between where most organizations focus their security efforts, and where the most serious threats actually reside. |
News: Patching vs. Isolating Vulnerabilities
| Patching and updating is pretty much baked-in to the thinking, standards, and coming legislation of the device security community. Yet isolation via partitioning is another viable approach for security, and it comes with many advantages. |  |
AI: User Outcry as Slack Scrapes Customer Data for AI Model Training
 |
Slack reveals it has been training AI/ML models on customer data, including messages, files and usage information. It’s opt-in by default. |
Cybercrime: Cybercrime ‘A Thriving Business’ as US Claims Frequency Rises
| Cyber claims frequency in the United States rose 13% last year, a new report shows. |  |
News: Windows 11 to Deprecate NTLM, Add AI-Powered App Controls and Security Defenses
 |
Microsoft on Monday confirmed its plans to deprecate NT LAN Manager (NTLM) in Windows 11 in the second half of the year, as it announced a slew of new security measures to harden the widely-used desktop operating system. |
Cybercrime: Owner of Incognito dark web drugs market arrested in New York
| The alleged owner and operator of Incognito Market, a dark web marketplace for selling illegal narcotics online, was arrested at the John F. Kennedy Airport in New York on May 18. |  |
News: Network Threats: A Step-by-Step Attack Demonstration
 |
Follow this real-life network attack simulation, covering 6 steps from Initial Access to Data Exfiltration. See how attackers remain undetected with the simplest tools and why you need multiple choke points in your defense strategy. |
Vulnerability Vortex
WordPress Plugin Exploited to Steal Credit Card Data from E-commerce Sites
| Unknown threat actors are abusing lesser-known code snippet plugins for WordPress to insert malicious PHP code in victim sites that are capable of harvesting credit card data. |  |
A High-Severity Vulnerability Affects CISCO Firepower Management Center
 |
Cisco addressed a SQL injection vulnerability in the web-based management interface of the Firepower Management Center (FMC) Software. |
Hackers target Check Point VPNs to breach enterprise networks
| Threat actors are targeting Check Point Remote Access VPN devices in an ongoing campaign to breach enterprise networks, the company warned in a Monday advisory. |  |
CISA Alerts Federal Agencies to Patch Actively Exploited Linux Kernel Flaw
 |
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a security flaw impacting the Linux kernel to the Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. |
Read also
Welcome to v062 : Roses are red, violets are blue, cyber-hackers are waiting for you
Welcome to v061 : New Year’s Resolution: Strengthen Cybersecurity, Protect Missions.
About Us
Developing cybersecurity plans, evaluating and implementing technology, building effective software, and executing strategic initiatives.