technology – Page 4 – Cybersecurity Today

Raid on Illegal Cryptomining Operation Seized Thousands of PS4s

“Thousands of PS4s seized in Ukraine in illegal cryptocurrency mining sting” via Charlie Osborne | ZDNet

“Thousands of PlayStation 4 gaming consoles have been seized after their discovery in an old warehouse, used to illicitly mine for cryptocurrency.

Ukraine’s Security Service said last week that in the city of Vinnytsia, located along the Southern Bug river, there was an abandoned warehouse in its industrial area that once belonged to…”

More detail: https://www.zdnet.com/article/thousands-of-ps4s-seized-in-ukraine-in-illegal-cryptocurrency-mining-sting/

0Day Used Against Orgs via CyberThreat Group

“Hackers used SolarWinds zero-day bug to target US Defense orgs” via Lawrence Abrams | Bleeping Computer

“China-based hackers actively target US defense and software companies using a vulnerability in the SolarWinds Serv-U FTP server.

Today, SolarWinds released a security update for a zero-day vulnerability in Serv-U FTP servers that allow remote code execution when SSH is enabled.

According to SolarWinds, this vulnerability was disclosed to Microsoft, who saw a threat actor actively exploiting the vulnerability to execute commands on vulnerable customer’s devices.”

More detail: https://www.bleepingcomputer.com/news/microsoft/hackers-used-solarwinds-zero-day-bug-to-target-us-defense-orgs/

RiskIQ to be Acquired by Microsoft

“Microsoft to acquire RiskIQ to strengthen cybersecurity of digital transformation and hybrid work” via Emma Jones | Microsoft Security Blog

“Organizations are increasingly using the cloud to reimagine every facet of their business. Hybrid work has accelerated this digital transformation, and customers are challenged with the increasing sophistication and frequency of cyberattacks. Today, Microsoft is announcing that we have entered into a definitive agreement to acquire RiskIQ, a leader in global threat intelligence and attack surface management, to help our shared customers build a more comprehensive view of the global threats to their businesses, better understand vulnerable internet-facing assets, and build world-class threat intelligence.”

More detail: https://www.microsoft.com/security/blog/2021/07/12/microsoft-to-acquire-riskiq-to-strengthen-cybersecurity-of-digital-transformation-and-hybrid-work/

25 Didi Apps Removed after Investigation Launch

“China to remove 25 Didi apps from store as crackdown intensifies” via Reuters

“administration on Friday said it would remove 25 mobile apps operated by Didi Global Inc from app stores as the government stepped up a crackdown on the ride-hailing giant.

The apps in question used data that was illegally collected by Didi and include those for its delivery service, camera device and finance services, the Cyberspace Administration of China said in a statement.”

More detail: https://finance.yahoo.com/amphtml/news/china-cyberspace-administration-says-remove-142715192.html

Artificial Intelligence’s Affects on the Cybersecurity Sector

Does AI have any affect on the current state of the cybersecurity sector? Booz Allen and industry leaders are pondering exactly that:

“Booz Allen and Industry Leaders Explore AI’s Impact on San Diego’s Booming Cybersecurity Sector” via Yahoo! Finance

““AI is not only helping cyber firms develop new products but also helping companies expand output amid talent shortages.”

Booz Allen Senior Vice President Jennie Brooks, head of the firm’s San Diego office

Few cities in America can match San Diego’s status as a growing technology hub. The region’s impact and support of cybersecurity in particular is staggering.

“Cyber in San Diego continues to grow by leaps and bounds, especially in tech, critical infrastructure, and national security. With a total regional economic impact of $3.5 billion annually, the cyber sector is the economic equivalent of hosting nine Super Bowls,” said Lisa Easterly, President and CEO of Cyber Center of Excellence (CCOE)—sponsor of the study.”

More details: https://finance.yahoo.com/news/booz-allen-industry-leaders-explore-120239741.html

Remote Work Monitoring and Privacy

Found this great article detailing privacy and remote work:

“Remote Workforce Monitoring Brings Up Privacy Concerns” via Security Boulevard

“The pandemic paved the way for expanded remote work possibilities, but companies looking to ensure employees remain on the job while at home have led some to consider technologies to digitally monitor worker activity, in some cases through AI.

Those initiatives come laden with thorny privacy concerns, legal landmines and, more than likely, stiff resistance from employees themselves—a recent report from IT research firm Gartner indicates 10% of workers would try to trick AI-driven tracking systems.”

More detail: https://securityboulevard.com/2021/07/remote-workforce-monitoring-brings-up-privacy-concerns/

Microsoft Releases Fix to PrintNightmare

“Out-of-Band (OOB) Security Update available for CVE-2021-34527” via Microsoft Security Response Center

“Today Microsoft released an Out-of-Band (OOB) security update for CVE-2021-34527, which is being discussed externally as PrintNightmare. This is a cumulative update release, so it contains all previous security fixes and should be applied immediately to fully protect your systems. The fix that we released today fully addresses the public vulnerability, and it also includes a new feature that allows customers to implement stronger protections.”

More detail: https://msrc-blog.microsoft.com/2021/07/06/out-of-band-oob-security-update-available-for-cve-2021-34527/

Didi App Gets Yanked from App Stores

Didi app gets removed from app stores after the launch of a cybersecurity investigation.

“China’s Ride-Hailing Giant Didi Removed From App Stores Over Cybersecurity Investigation” via Synced – https://syncedreview.com/2021/07/04/chinas-ride-hailing-giant-didi-removed-from-app-stores-over-cybersecurity-investigation/

“Didi shares tank as traders react to China’s crackdown” via CNBC – https://www.cnbc.com/2021/07/06/didi-shares-crash-as-traders-react-to-chinas-crackdown.html

“China orders Didi app downloads suspended over data violation” via Fox Business – https://www.foxbusiness.com/technology/china-orders-didi-app-downloads-suspended-over-data-violation

“China Signals Broad Clampdown on Company Data, Offshore Listings” via Bloomberg News – https://finance.yahoo.com/news/china-vows-ramp-scrutiny-data-111941548.html

How to enable Ransomware protection in Windows 10

Ransomware is an increasingly prevalent issue, with hackers using the latest software vulnerabilities to take over PCs, encrypt your data and demand …
How to enable Ransomware protection in Windows 10

Great Ransomware Defense Guide to Start with.

“Ransomware Defense: Top 5 Things to Do Right Now” via Matt Bromiley, senior consultant with Mandiant Managed Defense, discusses the top tricks and tips for protecting enterprise environments from ransomware.
— Read on threatpost.com/ransomware-defense-top-5-tips/167536/