Russia & Ukraine in Cyber War, AWS Data Leaks & MLK Jr Day

 

Cybersecurity News

CyberHub Podcast

January 17th, 2022

 

Today's Headlines and the latest #cybernews from the desk of the #CISO:

Microsoft: Data-wiping malware disguised as ransomware targets Ukraine again

Ukrainian Government Officially Accuses Russia of Recent Cyberattacks

Russia charges 8 suspected REvil ransomware gang members

Details Published on AWS Flaws Leading to Data Leaks

MLK I have a dream 59 Years old

 

Story Links:

https://therecord.media/microsoft-data-wiping-malware-disguised-as-ransomware-targets-ukraine-again/ (https://therecord.media/microsoft-data-wiping-malware-disguised-as-ransomware-targets-ukraine-again/)

https://thehackernews.com/2022/01/ukrainian-government-officially-accuses.html (https://thehackernews.com/2022/01/ukrainian-government-officially-accuses.html)

https://www.bleepingcomputer.com/news/security/russia-charges-8-suspected-revil-ransomware-gang-members/ (https://www.bleepingcomputer.com/news/security/russia-charges-8-suspected-revil-ransomware-gang-members/)

https://www.securityweek.com/details-published-aws-flaws-leading-data-leaks (https://www.securityweek.com/details-published-aws-flaws-leading-data-leaks)

https://www.youtube.com/watch?v=vP4iY1TtS3s (https://www.youtube.com/watch?v=vP4iY1TtS3s)

 

“The Microsoft Doctrine” by James Azar now on Substack https://jamesazar.substack.com/p/the-microsoft-doctrine (https://jamesazar.substack.com/p/the-microsoft-doctrine)

 

The Practitioner Brief is sponsored by:

KnowBe4: https://info.knowbe4.com/phishing-security-test-cyberhub (https://info.knowbe4.com/phishing-security-test-cyberhub) 

******

Find James Azar Host of CyberHub Podcast, CISO Talk, Goodbye Privacy, Digital Debate, and Other Side of Cyber

James on Linkedin: https://www.linkedin.com/in/james-azar-a1655316/ (https://www.linkedin.com/in/james-azar-a1655316/)

Telegram: CyberHub Podcast

******

Sign up for our newsletter with the best of CyberHub Podcast delivered to your inbox once a month: http://bit.ly/cyberhubengage-newsletter (https://www.youtube.com/redirect?v=64OtAZsDEeo&event=video_description&redir_token=7clfSb1AyXDXZa4GVIPiUJ3h9LB8MTU5MDU5MjczOUAxNTkwNTA2MzM5&q=http%3A%2F%2Fbit.ly%2Fcyberhubengage-newsletter)

******

Website: https://www.cyberhubpodcast.com (https://www.youtube.com/redirect?v=64OtAZsDEeo&event=video_description&redir_token=7clfSb1AyXDXZa4GVIPiUJ3h9LB8MTU5MDU5MjczOUAxNTkwNTA2MzM5&q=https%3A%2F%2Fwww.cyberhubpodcast.com)

Youtube: https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw (https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw)

Facebook: https://www.facebook.com/CyberHubpodcast/ (https://www.facebook.com/CyberHubpodcast/)

Linkedin: https://www.linkedin.com/company/cyberhubpodcast/

Twitter: https://twitter.com/cyberhubpodcast (http://www.twitter.com/cyberhubpodcast)

Instagram: https://www.instagram.com/cyberhubpodcast

Listen here: https://linktr.ee/cyberhubpodcast (https://linktr.ee/cyberhubpodcast)

 

The Hub of the Infosec Community.

Our mission is to provide substantive and quality content that’s more than headlines or sales pitches. We want to be a valuable source to assist those cybersecurity practitioners in their mission to keep their organizations secure.

Today's Headlines and the latest #cybernews from the desk of the #CISO:

Iranian Hackers Exploit Log4j Vulnerability to Deploy PowerShell Backdoor

US warns of Russian state-sponsored attacks on critical infrastructure

US Cyber Command Links 'MuddyWater' Hacking Group to Iranian Intelligence

Microsoft Introduces New Security Update Notifications

Chrome will limit access to private networks, citing security reasons

 

Story Links:

https://thehackernews.com/2022/01/iranian-hackers-exploit-log4j.html (https://thehackernews.com/2022/01/iranian-hackers-exploit-log4j.html)

https://therecord.media/us-warns-of-russian-state-sponsored-attacks-on-critical-infrastructure/ (https://therecord.media/us-warns-of-russian-state-sponsored-attacks-on-critical-infrastructure/)

https://thehackernews.com/2022/01/us-cyber-command-links-muddywater.html (https://thehackernews.com/2022/01/us-cyber-command-links-muddywater.html)

https://www.securityweek.com/microsoft-introduces-new-security-update-notifications (https://www.securityweek.com/microsoft-introduces-new-security-update-notifications)

https://therecord.media/chrome-will-limit-access-to-private-networks-citing-security-reasons/ (https://therecord.media/chrome-will-limit-access-to-private-networks-citing-security-reasons/)

 

“The Microsoft Doctrine” by James Azar now on Substack https://jamesazar.substack.com/p/the-microsoft-doctrine (https://jamesazar.substack.com/p/the-microsoft-doctrine)

 

The Practitioner Brief is sponsored by:

KnowBe4: https://info.knowbe4.com/phishing-security-test-cyberhub (https://info.knowbe4.com/phishing-security-test-cyberhub) 

******

Find James Azar Host of CyberHub Podcast, CISO Talk, Goodbye Privacy, Digital Debate, and Other Side of Cyber

James on Linkedin: https://www.linkedin.com/in/james-azar-a1655316/ (https://www.linkedin.com/in/james-azar-a1655316/)

Telegram: CyberHub Podcast

Gettr: @Jamesazar

******

Sign up for our newsletter with the best of CyberHub Podcast delivered to your inbox once a month: http://bit.ly/cyberhubengage-newsletter (https://www.youtube.com/redirect?v=64OtAZsDEeo&event=video_description&redir_token=7clfSb1AyXDXZa4GVIPiUJ3h9LB8MTU5MDU5MjczOUAxNTkwNTA2MzM5&q=http%3A%2F%2Fbit.ly%2Fcyberhubengage-newsletter)

******

Website: https://www.cyberhubpodcast.com (https://www.youtube.com/redirect?v=64OtAZsDEeo&event=video_description&redir_token=7clfSb1AyXDXZa4GVIPiUJ3h9LB8MTU5MDU5MjczOUAxNTkwNTA2MzM5&q=https%3A%2F%2Fwww.cyberhubpodcast.com)

Youtube: https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw (https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw)

Facebook: https://www.facebook.com/CyberHubpodcast/ (https://www.facebook.com/CyberHubpodcast/)

Linkedin: https://www.linkedin.com/company/cyberhubpodcast/

Twitter: https://twitter.com/cyberhubpodcast (http://www.twitter.com/cyberhubpodcast)

Instagram: https://www.instagram.com/cyberhubpodcast

Listen here: https://linktr.ee/cyberhubpodcast (https://linktr.ee/cyberhubpodcast)

 

The Hub of the Infosec Community.

Our mission is to provide substantive and quality content that’s more than headlines or sales pitches. We want to be a valuable source to assist those cybersecurity practitioners in their mission to keep their organizations secure.

 

#cybernews #infosec #cybersecurity #cyberhubpodcast #practitionerbrief

Patch Tuesday #1 of 2022, Cloud attack & North Korea & Russia  

 

Cybersecurity News

CyberHub Podcast

January 12th, 2022

 

Today's Headlines and the latest #cybernews from the desk of the #CISO:

First Patch Tuesday of 2022 Brings Fix for a Critical 'Wormable' Windows Vulnerability

CISA Adds 15 Recent and Older Vulnerabilities to 'Must-Patch' List

SAP Patches Log4Shell Vulnerability in More Applications

Remote Access Trojans spread through Microsoft Azure, AWS cloud service abuse

Hackers take over diplomat's email, target Russian deputy minister

 

Story Links:

https://thehackernews.com/2022/01/first-patch-tuesday-of-2022-brings-fix.html (https://thehackernews.com/2022/01/first-patch-tuesday-of-2022-brings-fix.html)

https://www.securityweek.com/cisa-adds-15-recent-and-older-vulnerabilities-must-patch-list (https://www.securityweek.com/cisa-adds-15-recent-and-older-vulnerabilities-must-patch-list)

https://www.securityweek.com/sap-patches-log4shell-vulnerability-more-applications (https://www.securityweek.com/sap-patches-log4shell-vulnerability-more-applications)

https://www.zdnet.com/article/remote-access-trojans-spread-through-microsoft-azure-aws-cloud-service-abuse/ (https://www.zdnet.com/article/remote-access-trojans-spread-through-microsoft-azure-aws-cloud-service-abuse/)

https://www.bleepingcomputer.com/news/security/hackers-take-over-diplomats-email-target-russian-deputy-minister/ (https://www.bleepingcomputer.com/news/security/hackers-take-over-diplomats-email-target-russian-deputy-minister/)

 

“The Microsoft Doctrine” by James Azar now on Substack https://jamesazar.substack.com/p/the-microsoft-doctrine (https://jamesazar.substack.com/p/the-microsoft-doctrine)

 

The Practitioner Brief is sponsored by:

KnowBe4: https://info.knowbe4.com/phishing-security-test-cyberhub (https://info.knowbe4.com/phishing-security-test-cyberhub) 

******

Find James Azar Host of CyberHub Podcast, CISO Talk, Goodbye Privacy, Digital Debate, and Other Side of Cyber

James on Linkedin: https://www.linkedin.com/in/james-azar-a1655316/ (https://www.linkedin.com/in/james-azar-a1655316/)

Telegram: CyberHub Podcast

Gettr: @Jamesazar

******

Sign up for our newsletter with the best of CyberHub Podcast delivered to your inbox once a month: http://bit.ly/cyberhubengage-newsletter (https://www.youtube.com/redirect?v=64OtAZsDEeo&event=video_description&redir_token=7clfSb1AyXDXZa4GVIPiUJ3h9LB8MTU5MDU5MjczOUAxNTkwNTA2MzM5&q=http%3A%2F%2Fbit.ly%2Fcyberhubengage-newsletter)

******

Website: https://www.cyberhubpodcast.com (https://www.youtube.com/redirect?v=64OtAZsDEeo&event=video_description&redir_token=7clfSb1AyXDXZa4GVIPiUJ3h9LB8MTU5MDU5MjczOUAxNTkwNTA2MzM5&q=https%3A%2F%2Fwww.cyberhubpodcast.com)

Youtube: https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw (https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw)

Facebook: https://www.facebook.com/CyberHubpodcast/ (https://www.facebook.com/CyberHubpodcast/)

Linkedin: https://www.linkedin.com/company/cyberhubpodcast/

Twitter: https://twitter.com/cyberhubpodcast (http://www.twitter.com/cyberhubpodcast)

Instagram: https://www.instagram.com/cyberhubpodcast

Listen here: https://linktr.ee/cyberhubpodcast (https://linktr.ee/cyberhubpodcast)

 

The Hub of the Infosec Community.

Our mission is to provide substantive and quality content that’s more than headlines or sales pitches. We want to be a valuable source to assist those cybersecurity practitioners in their mission to keep their organizations secure.

 

#cybernews #infosec #cybersecurity #cyberhubpodcast #practitionerbrief

Apache Open Source Callout, Log4J Ransomware and More

Cybersecurity News

CyberHub Podcast

January 11th, 2021

 

Today's Headlines and the latest #cybernews from the desk of the #CISO:

Apache Foundation Calls Out Open-Source Leechers

Night Sky ransomware uses Log4j bug to hack VMware Horizon servers

CISA director: Log4Shell has not resulted in ‘significant’ government intrusions yet

Microsoft Details 'powerdir' macOS Vulnerability Leading to Data Leaks

North Korean Hackers Start New Year with Attacks on Russian Foreign Ministry

 

Story Links:

https://www.securityweek.com/apache-foundation-calls-out-open-source-leechers (https://www.securityweek.com/apache-foundation-calls-out-open-source-leechers)

https://www.bleepingcomputer.com/news/security/night-sky-ransomware-uses-log4j-bug-to-hack-vmware-horizon-servers/ (https://www.bleepingcomputer.com/news/security/night-sky-ransomware-uses-log4j-bug-to-hack-vmware-horizon-servers/)

https://therecord.media/cisa-director-log4shell-has-not-resulted-in-significant-government-intrusions-yet/ (https://therecord.media/cisa-director-log4shell-has-not-resulted-in-significant-government-intrusions-yet/)

https://www.securityweek.com/microsoft-details-powerdir-macos-vulnerability-leading-data-leaks (https://www.securityweek.com/microsoft-details-powerdir-macos-vulnerability-leading-data-leaks)

https://thehackernews.com/2022/01/north-korean-hackers-start-new-year.html (https://thehackernews.com/2022/01/north-korean-hackers-start-new-year.html)

 

“The Microsoft Doctrine” by James Azar now on Substack https://jamesazar.substack.com/p/the-microsoft-doctrine (https://jamesazar.substack.com/p/the-microsoft-doctrine)

 

The Practitioner Brief is sponsored by:

KnowBe4: https://info.knowbe4.com/phishing-security-test-cyberhub (https://info.knowbe4.com/phishing-security-test-cyberhub) 

******

Find James Azar Host of CyberHub Podcast, CISO Talk, Goodbye Privacy, Digital Debate, and Other Side of Cyber

James on Linkedin: https://www.linkedin.com/in/james-azar-a1655316/ (https://www.linkedin.com/in/james-azar-a1655316/)

Telegram: CyberHub Podcast

Gettr: @Jamesazar

******

Sign up for our newsletter with the best of CyberHub Podcast delivered to your inbox once a month: http://bit.ly/cyberhubengage-newsletter (https://www.youtube.com/redirect?v=64OtAZsDEeo&event=video_description&redir_token=7clfSb1AyXDXZa4GVIPiUJ3h9LB8MTU5MDU5MjczOUAxNTkwNTA2MzM5&q=http%3A%2F%2Fbit.ly%2Fcyberhubengage-newsletter)

******

Website: https://www.cyberhubpodcast.com (https://www.youtube.com/redirect?v=64OtAZsDEeo&event=video_description&redir_token=7clfSb1AyXDXZa4GVIPiUJ3h9LB8MTU5MDU5MjczOUAxNTkwNTA2MzM5&q=https%3A%2F%2Fwww.cyberhubpodcast.com)

Youtube: https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw (https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw)

Facebook: https://www.facebook.com/CyberHubpodcast/ (https://www.facebook.com/CyberHubpodcast/)

Linkedin: https://www.linkedin.com/company/cyberhubpodcast/

Twitter: https://twitter.com/cyberhubpodcast (http://www.twitter.com/cyberhubpodcast)

Instagram: https://www.instagram.com/cyberhubpodcast

Listen here: https://linktr.ee/cyberhubpodcast (https://linktr.ee/cyberhubpodcast)

 

The Hub of the Infosec Community.

Our mission is to provide substantive and quality content that’s more than headlines or sales pitches. We want to be a valuable source to assist those cybersecurity practitioners in their mission to keep their organizations secure.

 

#cybernews #infosec #cybersecurity #cyberhubpodcast #practitionerbrief

VMware Horizon & Log4Shell, Patching Woes and USB Ransomware

 

Cybersecurity News

CyberHub Podcast

January 10th, 2021

 

Today's Headlines and the latest #cybernews from the desk of the #CISO:

Threat actor targets VMware Horizon servers using Log4Shell exploits

SonicWall Patches Y2K22 Bug in Email Security, Firewall Products

QNAP Urges Users to Secure NAS Devices as Attacks Surge

Eight New macOS Malware Families Emerged in 2021

FIN7 hackers target US companies with BadUSB devices to install ransomware

WordPress 5.8.3 Patches Several Injection Vulnerabilities

 

Story Links:

https://therecord.media/uk-nhs-threat-actor-targets-vmware-horizon-servers-using-log4shell-exploits/ (https://therecord.media/uk-nhs-threat-actor-targets-vmware-horizon-servers-using-log4shell-exploits/)

https://www.securityweek.com/sonicwall-patches-y2k22-bug-email-security-firewall-products (https://www.securityweek.com/sonicwall-patches-y2k22-bug-email-security-firewall-products)

https://www.securityweek.com/qnap-urges-users-secure-nas-devices-attacks-surge (https://www.securityweek.com/qnap-urges-users-secure-nas-devices-attacks-surge)

https://www.securityweek.com/eight-new-macos-malware-families-emerged-2021 (https://www.securityweek.com/eight-new-macos-malware-families-emerged-2021)

https://therecord.media/fbi-fin7-hackers-target-us-companies-with-badusb-devices-to-install-ransomware/ (https://therecord.media/fbi-fin7-hackers-target-us-companies-with-badusb-devices-to-install-ransomware/)

https://www.securityweek.com/wordpress-583-patches-several-injection-vulnerabilities (https://www.securityweek.com/wordpress-583-patches-several-injection-vulnerabilities)

 

“The Microsoft Doctrine” by James Azar now on Substack https://jamesazar.substack.com/p/the-microsoft-doctrine (https://jamesazar.substack.com/p/the-microsoft-doctrine)

 

The Practitioner Brief is sponsored by:

KnowBe4: https://info.knowbe4.com/phishing-security-test-cyberhub (https://info.knowbe4.com/phishing-security-test-cyberhub) 

******

Find James Azar Host of CyberHub Podcast, CISO Talk, Goodbye Privacy, Digital Debate, and Other Side of Cyber

James on Linkedin: https://www.linkedin.com/in/james-azar-a1655316/ (https://www.linkedin.com/in/james-azar-a1655316/)

Telegram: CyberHub Podcast

Gettr: @Jamesazar

******

Sign up for our newsletter with the best of CyberHub Podcast delivered to your inbox once a month: http://bit.ly/cyberhubengage-newsletter (https://www.youtube.com/redirect?v=64OtAZsDEeo&event=video_description&redir_token=7clfSb1AyXDXZa4GVIPiUJ3h9LB8MTU5MDU5MjczOUAxNTkwNTA2MzM5&q=http%3A%2F%2Fbit.ly%2Fcyberhubengage-newsletter)

******

Website: https://www.cyberhubpodcast.com (https://www.youtube.com/redirect?v=64OtAZsDEeo&event=video_description&redir_token=7clfSb1AyXDXZa4GVIPiUJ3h9LB8MTU5MDU5MjczOUAxNTkwNTA2MzM5&q=https%3A%2F%2Fwww.cyberhubpodcast.com)

Youtube: https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw (https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw)

Facebook: https://www.facebook.com/CyberHubpodcast/ (https://www.facebook.com/CyberHubpodcast/)

Linkedin: https://www.linkedin.com/company/cyberhubpodcast/

Twitter: https://twitter.com/cyberhubpodcast (http://www.twitter.com/cyberhubpodcast)

Instagram: https://www.instagram.com/cyberhubpodcast

Listen here: https://linktr.ee/cyberhubpodcast (https://linktr.ee/cyberhubpodcast)

 

The Hub of the Infosec Community.

Our mission is to provide substantive and quality content that’s more than headlines or sales pitches. We want to be a valuable source to assist those cybersecurity practitioners in their mission to keep their organizations secure.

 

#cybernews #infosec #cybersecurity #cyberhubpodcast #practitionerbrief

Cybersecurity News

CyberHub Podcast

January 6th, 2021

 

Today's Headlines and the latest #cybernews from the desk of the #CISO:

VMware Patches Important Bug Affecting ESXi, Workstation and Fusion Products

NY OAG: Hackers stole 1.1 million customer accounts from 17 companies

France Hits Google, Facebook With Huge Fines Over 'Cookies'

Privacy-focused Brave browser records massive growth in 2021

Senators Seek Clarity on DHS, DOT Cybersecurity Efforts

 

Story Links:

https://thehackernews.com/2022/01/vmware-patches-important-bug-affecting.html (https://thehackernews.com/2022/01/vmware-patches-important-bug-affecting.html)

https://www.bleepingcomputer.com/news/security/ny-oag-hackers-stole-11-million-customer-accounts-from-17-companies/ (https://www.bleepingcomputer.com/news/security/ny-oag-hackers-stole-11-million-customer-accounts-from-17-companies/)

https://www.securityweek.com/france-hits-google-facebook-huge-fines-over-cookies (https://www.securityweek.com/france-hits-google-facebook-huge-fines-over-cookies)

https://www.bleepingcomputer.com/news/technology/privacy-focused-brave-browser-records-massive-growth-in-2021/ (https://www.bleepingcomputer.com/news/technology/privacy-focused-brave-browser-records-massive-growth-in-2021/)

https://www.databreachtoday.com/senators-seek-clarity-on-dhs-dot-cybersecurity-efforts-a-18248 (https://www.databreachtoday.com/senators-seek-clarity-on-dhs-dot-cybersecurity-efforts-a-18248)

 

“The Microsoft Doctrine” by James Azar now on Substack https://jamesazar.substack.com/p/the-microsoft-doctrine (https://jamesazar.substack.com/p/the-microsoft-doctrine)

 

The Practitioner Brief is sponsored by:

KnowBe4: https://info.knowbe4.com/phishing-security-test-cyberhub (https://info.knowbe4.com/phishing-security-test-cyberhub) 

******

Find James Azar Host of CyberHub Podcast, CISO Talk, Goodbye Privacy, Digital Debate, and Other Side of Cyber

James on Linkedin: https://www.linkedin.com/in/james-azar-a1655316/ (https://www.linkedin.com/in/james-azar-a1655316/)

Telegram: CyberHub Podcast

Gettr: @Jamesazar

******

Sign up for our newsletter with the best of CyberHub Podcast delivered to your inbox once a month: http://bit.ly/cyberhubengage-newsletter (https://www.youtube.com/redirect?v=64OtAZsDEeo&event=video_description&redir_token=7clfSb1AyXDXZa4GVIPiUJ3h9LB8MTU5MDU5MjczOUAxNTkwNTA2MzM5&q=http%3A%2F%2Fbit.ly%2Fcyberhubengage-newsletter)

******

Website: https://www.cyberhubpodcast.com (https://www.youtube.com/redirect?v=64OtAZsDEeo&event=video_description&redir_token=7clfSb1AyXDXZa4GVIPiUJ3h9LB8MTU5MDU5MjczOUAxNTkwNTA2MzM5&q=https%3A%2F%2Fwww.cyberhubpodcast.com)

Youtube: https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw (https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw)

Facebook: https://www.facebook.com/CyberHubpodcast/ (https://www.facebook.com/CyberHubpodcast/)

Linkedin: https://www.linkedin.com/company/cyberhubpodcast/

Twitter: https://twitter.com/cyberhubpodcast (http://www.twitter.com/cyberhubpodcast)

Instagram: https://www.instagram.com/cyberhubpodcast

Listen here: https://linktr.ee/cyberhubpodcast (https://linktr.ee/cyberhubpodcast)

 

The Hub of the Infosec Community.

Our mission is to provide substantive and quality content that’s more than headlines or sales pitches. We want to be a valuable source to assist those cybersecurity practitioners in their mission to keep their organizations secure.

 

#cybernews #infosec #cybersecurity #cyberhubpodcast #practitionerbrief

FTC Legal Action on Log4j, Goolge Patches, Morgan Stanley & China  

 

Cybersecurity News

CyberHub Podcast

January 5th, 2021

 

Today's Headlines and the latest #cybernews from the desk of the #CISO:

FTC warns legal action against companies who fail to mitigate Log4Shell

Chrome 97 Patches 37 Vulnerabilities

Google Patches 48 Vulnerabilities With First Set of 2022 Android Updates

Morgan Stanley agrees to $60 million settlement in data breach lawsuit

China moots additional security rules for apps that influence public opinion

 

Story Links:

https://therecord.media/ftc-warns-legal-action-against-companies-who-fail-to-mitigate-log4shell/ (https://therecord.media/ftc-warns-legal-action-against-companies-who-fail-to-mitigate-log4shell/)

https://www.securityweek.com/chrome-97-patches-37-vulnerabilities (https://www.securityweek.com/chrome-97-patches-37-vulnerabilities)

https://www.securityweek.com/google-patches-48-vulnerabilities-first-set-2022-android-updates (https://www.securityweek.com/google-patches-48-vulnerabilities-first-set-2022-android-updates)

https://www.zdnet.com/article/morgan-stanley-agrees-to-60-million-settlement-in-data-breach-lawsuit/ (https://www.zdnet.com/article/morgan-stanley-agrees-to-60-million-settlement-in-data-breach-lawsuit/)

https://www.zdnet.com/article/china-moots-additional-security-rules-for-apps-that-influence-public-opinion/ (https://www.zdnet.com/article/china-moots-additional-security-rules-for-apps-that-influence-public-opinion/)

 

“The Microsoft Doctrine” by James Azar now on Substack https://jamesazar.substack.com/p/the-microsoft-doctrine (https://jamesazar.substack.com/p/the-microsoft-doctrine)

 

The Practitioner Brief is sponsored by:

KnowBe4: https://info.knowbe4.com/phishing-security-test-cyberhub (https://info.knowbe4.com/phishing-security-test-cyberhub) 

******

Find James Azar Host of CyberHub Podcast, CISO Talk, Goodbye Privacy, Digital Debate, and Other Side of Cyber

James on Linkedin: https://www.linkedin.com/in/james-azar-a1655316/ (https://www.linkedin.com/in/james-azar-a1655316/)

Telegram: CyberHub Podcast

Gettr: @Jamesazar

******

Sign up for our newsletter with the best of CyberHub Podcast delivered to your inbox once a month: http://bit.ly/cyberhubengage-newsletter (https://www.youtube.com/redirect?v=64OtAZsDEeo&event=video_description&redir_token=7clfSb1AyXDXZa4GVIPiUJ3h9LB8MTU5MDU5MjczOUAxNTkwNTA2MzM5&q=http%3A%2F%2Fbit.ly%2Fcyberhubengage-newsletter)

******

Website: https://www.cyberhubpodcast.com (https://www.youtube.com/redirect?v=64OtAZsDEeo&event=video_description&redir_token=7clfSb1AyXDXZa4GVIPiUJ3h9LB8MTU5MDU5MjczOUAxNTkwNTA2MzM5&q=https%3A%2F%2Fwww.cyberhubpodcast.com)

Youtube: https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw (https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw)

Facebook: https://www.facebook.com/CyberHubpodcast/ (https://www.facebook.com/CyberHubpodcast/)

Linkedin: https://www.linkedin.com/company/cyberhubpodcast/

Twitter: https://twitter.com/cyberhubpodcast (http://www.twitter.com/cyberhubpodcast)

Instagram: https://www.instagram.com/cyberhubpodcast

Listen here: https://linktr.ee/cyberhubpodcast (https://linktr.ee/cyberhubpodcast)

 

The Hub of the Infosec Community.

Our mission is to provide substantive and quality content that’s more than headlines or sales pitches. We want to be a valuable source to assist those cybersecurity practitioners in their mission to keep their organizations secure.

 

#cybernews #infosec #cybersecurity #cyberhubpodcast #practitionerbrief

Log4j continues, UK MOD Cyber attack & China  

Cybersecurity News

CyberHub Podcast

January 4th, 2021

 

Today's Headlines and the latest #cybernews from the desk of the #CISO:

Log4j flaw attacks are causing lots of problems

Multiple Vulnerabilities Impact Netgear Nighthawk R6700 Routers

Cyberattack against UK Ministry of Defense training academy revealed

Skimmer Injected Into 100 Real Estate Websites via Cloud Video Platform

China harvests masses of data on Western targets, documents show

 

Story Links:

https://www.zdnet.com/article/log4j-flaw-attacks-are-causing-lots-of-problems-microsoft-warns/ (https://www.zdnet.com/article/log4j-flaw-attacks-are-causing-lots-of-problems-microsoft-warns/)

https://www.securityweek.com/multiple-vulnerabilities-impact-netgear-nighthawk-r6700-routers (https://www.securityweek.com/multiple-vulnerabilities-impact-netgear-nighthawk-r6700-routers)

https://www.zdnet.com/article/ex-officer-reveals-cyberattack-against-uk-ministry-of-defence-training-academy/ (https://www.zdnet.com/article/ex-officer-reveals-cyberattack-against-uk-ministry-of-defence-training-academy/)

https://www.securityweek.com/skimmer-injected-100-real-estate-websites-cloud-video-platform (https://www.securityweek.com/skimmer-injected-100-real-estate-websites-cloud-video-platform)

https://www.washingtonpost.com/national-security/china-harvests-masses-of-data-on-western-targets-documents-show/2021/12/31/3981ce9c-538e-11ec-8927-c396fa861a71_story.html (https://www.washingtonpost.com/national-security/china-harvests-masses-of-data-on-western-targets-documents-show/2021/12/31/3981ce9c-538e-11ec-8927-c396fa861a71_story.html)

 

“The Microsoft Doctrine” by James Azar now on Substack https://jamesazar.substack.com/p/the-microsoft-doctrine (https://jamesazar.substack.com/p/the-microsoft-doctrine)

 

The Practitioner Brief is sponsored by:

KnowBe4: https://info.knowbe4.com/phishing-security-test-cyberhub (https://info.knowbe4.com/phishing-security-test-cyberhub) 

******

Find James Azar Host of CyberHub Podcast, CISO Talk, Goodbye Privacy, Digital Debate, and Other Side of Cyber

James on Linkedin: https://www.linkedin.com/in/james-azar-a1655316/ (https://www.linkedin.com/in/james-azar-a1655316/)

Telegram: CyberHub Podcast

Gettr: @Jamesazar

******

Sign up for our newsletter with the best of CyberHub Podcast delivered to your inbox once a month: http://bit.ly/cyberhubengage-newsletter (https://www.youtube.com/redirect?v=64OtAZsDEeo&event=video_description&redir_token=7clfSb1AyXDXZa4GVIPiUJ3h9LB8MTU5MDU5MjczOUAxNTkwNTA2MzM5&q=http%3A%2F%2Fbit.ly%2Fcyberhubengage-newsletter)

******

Website: https://www.cyberhubpodcast.com (https://www.youtube.com/redirect?v=64OtAZsDEeo&event=video_description&redir_token=7clfSb1AyXDXZa4GVIPiUJ3h9LB8MTU5MDU5MjczOUAxNTkwNTA2MzM5&q=https%3A%2F%2Fwww.cyberhubpodcast.com)

Youtube: https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw (https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw)

Facebook: https://www.facebook.com/CyberHubpodcast/ (https://www.facebook.com/CyberHubpodcast/)

Linkedin: https://www.linkedin.com/company/cyberhubpodcast/

Twitter: https://twitter.com/cyberhubpodcast (http://www.twitter.com/cyberhubpodcast)

Instagram: https://www.instagram.com/cyberhubpodcast

Listen here: https://linktr.ee/cyberhubpodcast (https://linktr.ee/cyberhubpodcast)

 

The Hub of the Infosec Community.

Our mission is to provide substantive and quality content that’s more than headlines or sales pitches. We want to be a valuable source to assist those cybersecurity practitioners in their mission to keep their organizations secure.

 

#cybernews #infosec #cybersecurity #cyberhubpodcast #practitionerbrief

Y2K22 crashes email, China & Log4J, T-Mobile & Iran

Cybersecurity News

CyberHub Podcast

January 3rd, 2021

 

Today's Headlines and the latest #cybernews from the desk of the #CISO:

Microsoft Issues Fix for Exchange Y2K22 Bug That Crippled Email Delivery Service

Chinese Spies Exploit Log4Shell to Hack Major Academic Institution

T-Mobile confirms SIM swapping attacks led to breach

Israeli Media Outlets Hacked on Soleimani Killing Anniversary

Don't copy-paste commands from webpages — you can get hacked

 

Story Links:

https://thehackernews.com/2022/01/microsoft-issues-fix-for-exchange-y2k22.html (https://thehackernews.com/2022/01/microsoft-issues-fix-for-exchange-y2k22.html)

https://www.securityweek.com/chinese-spies-exploit-log4shell-hack-major-academic-institution (https://www.securityweek.com/chinese-spies-exploit-log4shell-hack-major-academic-institution)

https://www.zdnet.com/article/t-mobile-confirms-sim-swapping-attacks-led-to-breach/ (https://www.zdnet.com/article/t-mobile-confirms-sim-swapping-attacks-led-to-breach/)

https://www.securityweek.com/israeli-media-outlets-hacked-soleimani-killing-anniversary (https://www.securityweek.com/israeli-media-outlets-hacked-soleimani-killing-anniversary)

https://www.bleepingcomputer.com/news/security/dont-copy-paste-commands-from-webpages-you-can-get-hacked/ (https://www.bleepingcomputer.com/news/security/dont-copy-paste-commands-from-webpages-you-can-get-hacked/)

 

“The Microsoft Doctrine” by James Azar now on Substack https://jamesazar.substack.com/p/the-microsoft-doctrine (https://jamesazar.substack.com/p/the-microsoft-doctrine)

 

The Practitioner Brief is sponsored by:

KnowBe4: https://info.knowbe4.com/phishing-security-test-cyberhub (https://info.knowbe4.com/phishing-security-test-cyberhub) 

******

Find James Azar Host of CyberHub Podcast, CISO Talk, Goodbye Privacy, Digital Debate, Other Side of Cyber

James on Linkedin: https://www.linkedin.com/in/james-azar-a1655316/ (https://www.linkedin.com/in/james-azar-a1655316/)

Telegram: CyberHub Podcast

******

Sign up for our newsletter with the best of CyberHub Podcast delivered to your inbox once a month: http://bit.ly/cyberhubengage-newsletter (https://www.youtube.com/redirect?v=64OtAZsDEeo&event=video_description&redir_token=7clfSb1AyXDXZa4GVIPiUJ3h9LB8MTU5MDU5MjczOUAxNTkwNTA2MzM5&q=http%3A%2F%2Fbit.ly%2Fcyberhubengage-newsletter)

******

Website: https://www.cyberhubpodcast.com (https://www.youtube.com/redirect?v=64OtAZsDEeo&event=video_description&redir_token=7clfSb1AyXDXZa4GVIPiUJ3h9LB8MTU5MDU5MjczOUAxNTkwNTA2MzM5&q=https%3A%2F%2Fwww.cyberhubpodcast.com)

Youtube: https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw (https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw)

Facebook: https://www.facebook.com/CyberHubpodcast/ (https://www.facebook.com/CyberHubpodcast/)

Linkedin: https://www.linkedin.com/company/cyberhubpodcast/

Twitter: https://twitter.com/cyberhubpodcast (http://www.twitter.com/cyberhubpodcast)

Instagram: https://www.instagram.com/cyberhubpodcast

Listen here: https://linktr.ee/cyberhubpodcast (https://linktr.ee/cyberhubpodcast)

 

The Hub of the Infosec Community.

Our mission is to provide substantive and quality content that’s more than headlines or sales pitches. We want to be a valuable source to assist those cybersecurity practitioners in their mission to keep their organizations secure.

 

#cybernews #infosec #cybersecurity #cyberhubpodcast #practitionerbrief

The Microsoft Doctrine” by James Azar now on Substack https://jamesazar.substack.com/p/the-microsoft-doctrine (https://jamesazar.substack.com/p/the-microsoft-doctrine)

 

The Practitioner Brief is sponsored by:

KnowBe4: https://info.knowbe4.com/phishing-security-test-cyberhub (https://info.knowbe4.com/phishing-security-test-cyberhub) 

****

Find James Azar Host of CyberHub Podcast, CISO Talk, Goodbye Privacy, Digital Debate, Other Side of Cyber

James on Linkedin: https://www.linkedin.com/in/james-azar-a1655316/ (https://www.linkedin.com/in/james-azar-a1655316/)

James on Parler: @realjamesazar

Telegram: CyberHub Podcast

******

Sign up for our newsletter with the best of CyberHub Podcast delivered to your inbox once a month: http://bit.ly/cyberhubengage-newsletter (https://www.youtube.com/redirect?v=64OtAZsDEeo&event=video_description&redir_token=7clfSb1AyXDXZa4GVIPiUJ3h9LB8MTU5MDU5MjczOUAxNTkwNTA2MzM5&q=http%3A%2F%2Fbit.ly%2Fcyberhubengage-newsletter)

******

Website: https://www.cyberhubpodcast.com (https://www.youtube.com/redirect?v=64OtAZsDEeo&event=video_description&redir_token=7clfSb1AyXDXZa4GVIPiUJ3h9LB8MTU5MDU5MjczOUAxNTkwNTA2MzM5&q=https%3A%2F%2Fwww.cyberhubpodcast.com)

Youtube: https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw (https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw)

Facebook: https://www.facebook.com/CyberHubpodcast/ (https://www.facebook.com/CyberHubpodcast/)

Linkedin: https://www.linkedin.com/company/cyberhubpodcast/

Twitter: https://twitter.com/cyberhubpodcast (http://www.twitter.com/cyberhubpodcast)

Instagram: https://www.instagram.com/cyberhubpodcast

Listen here: https://linktr.ee/cyberhubpodcast (https://linktr.ee/cyberhubpodcast)

 

The Hub of the Infosec Community.

Our mission is to provide substantive and quality content that’s more than headlines or sales pitches. We want to be a valuable source to assist those cybersecurity practitioners in their mission to keep their organizations secure.

 

#cybernews #infosec #cybersecurity #cyberhubpodcast #practitionerbrief