Phishing: The Silent Precursor to Data Breaches

December 12, 2024 at 02:20PM Phishing is a leading cyber threat that often initiates data breaches, as seen in the 2021 Colonial Pipeline attack. This social engineering tactic manipulates victims into revealing sensitive information through various methods, including email and SMS. Mitigating risks requires user education, technical controls, and robust incident response strategies. ### Meeting … Read more

Russian spies may have moved in next door to target your network

November 24, 2024 at 08:37PM Volexity reported a “nearest neighbor attack” by Kremlin-backed hackers APT28, compromising networks via neighboring organizations’ Wi-Fi without MFA. Cisco warns of an expiring internal certificate risking device management. Microsoft seized 240 phishing sites linked to a suspect. Helldown ransomware targets Linux, and Jupyter Notebooks are hijacked for illegal sports streaming. … Read more

Hackers breach US firm over Wi-Fi from Russia in ‘Nearest Neighbor Attack’

November 22, 2024 at 02:34PM Russian state hackers APT28 breached a U.S. company by executing a “nearest neighbor attack” via its enterprise WiFi, compromising nearby organizations first. Discovered on February 4, 2022, the incident involved credential theft and sophisticated lateral movement within the target network. Enhanced WiFi security is necessary to mitigate such risks. ### … Read more

Mega US healthcare payments network restores system 9 months after ransomware attack

November 20, 2024 at 01:09PM Change Healthcare has restored its clearinghouse services after a February ransomware attack, affecting 94% of hospitals. Despite partial recovery, financial strain persists for providers, with over $6 billion loaned. CEO Andrew Witty faced Congress for the decision to pay a $22 million ransom. Security lapses were criticized as “egregious negligence.” … Read more

A Hacker’s Guide to Password Cracking

November 7, 2024 at 07:42AM The article emphasizes the importance of strong password security to defend against hackers, who exploit weak, commonly used passwords. It discusses the risks of password reuse and suggests adopting longer passphrases, implementing multi-factor authentication, and enforcing strong password policies to enhance organizational security. Users should be educated on best practices. … Read more

Google Cloud to Enforce MFA on Accounts in 2025

November 6, 2024 at 07:17PM Google will mandate multi-factor authentication (MFA) for all Google Cloud users by the end of 2025, starting phased implementation this month. This requirement aims to enhance account security, although general consumer accounts are exempt. Similar measures are being adopted across the industry, but MFA alone is not infallible against threats. … Read more

Google Cloud to make MFA mandatory by the end of 2025

November 5, 2024 at 03:13PM Google will mandate multi-factor authentication (MFA) for all Google Cloud accounts by the end of 2025 to improve security. The rollout will occur in three phases, starting with reminders for non-MFA users. Research indicates MFA significantly reduces hacking risks, and Google offers user-friendly options for implementation. ### Meeting Takeaways on … Read more

Modernization of Authentication: Webinar on MFA, Passwords, and the Shift to Passwordless

October 7, 2024 at 06:45AM Interest in passwordless authentication is on the rise due to hybrid work environments and digitization. Traditional password systems are susceptible to security threats, prompting consideration of passwordless methods like biometrics and smartcards. Despite challenges, MFA remains a critical security layer. A webinar will discuss the evolving landscape of password security … Read more

Cracking the Cloud: The Persistent Threat of Credential-Based Attacks

October 1, 2024 at 08:51AM Summary: Despite the implementation of multi-factor authentication (MFA) to enhance security, credentials remain the primary target for malicious parties entering systems, posing a persistent threat to cloud environments. This issue was highlighted in the SecurityWeek article “Cracking the Cloud: The Persistent Threat of Credential-Based Attacks.” Based on the meeting notes, … Read more

Microsoft Defender adds detection of unsecure Wi-Fi networks

September 30, 2024 at 04:52PM Microsoft Defender now alerts users with a Microsoft 365 Personal/Family subscription about unsecured Wi-Fi networks. The privacy protection feature, Defender VPN, safeguards data and identity on public Wi-Fi or untrusted networks by encrypting and routing internet traffic through Microsoft’s servers. It can also detect and alert users of potential attacks … Read more