“The Microsoft Doctrine” by James Azar now on Substack https://jamesazar.substack.com/p/the-microsoft-doctrine (https://jamesazar.substack.com/p/the-microsoft-doctrine)

CyberWeek Georgia event on September 21st, 2021, get your pass now at https://www.cyberweekgeorgia.com (https://www.cyberweekgeorgia.com/)

 

Bio:

Paul Caiazzo, CISO and SVP of Corporate Development at Avertium, oversees technology alliances and strategic initiatives guiding clients through challenging security problems. With a dedicated career to stay at the forefront of cybersecurity technology advancements, Caiazzo is a leader and educator in threat detection, threat intelligence, incident response and ransomware.  He leads Avertium’s internal security and compliance initiatives working to reduce risk across the organization and is also a known entity on the front lines as a key negotiator for the most complicated and hi-profile ransomware threats. Caiazzo is found regularly contributing to industry podcasts, speaking to business groups, or sharing insider information through a pragmatic and approachable lens.

 

Tech Corner is supported by these great partners please make sure to check them out:

KnowBe4: https://info.knowbe4.com/phishing-security-test-cyberhub (https://info.knowbe4.com/phishing-security-test-cyberhub) 

Attivo Networks: www.attivonetworks.com

****

Find James Azar Host of CyberHub Podcast, CISO Talk, Goodbye Privacy, Tech Town Square, Other Side of Cyber

James on Linkedin: https://www.linkedin.com/in/james-j-azar/ (https://www.linkedin.com/in/james-j-azar/)

James on Parler: @realjamesazar

Telegram: CyberHub Podcast

Locals: https://cyberhubpodcast.locals.com

******

Sign up for our newsletter with the best of CyberHub Podcast delivered to your inbox once a month: http://bit.ly/cyberhubengage-newsletter (https://www.youtube.com/redirect?v=64OtAZsDEeo&event=video_description&redir_token=7clfSb1AyXDXZa4GVIPiUJ3h9LB8MTU5MDU5MjczOUAxNTkwNTA2MzM5&q=http%3A%2F%2Fbit.ly%2Fcyberhubengage-newsletter)

******

Website: https://www.cyberhubpodcast.com (https://www.youtube.com/redirect?v=64OtAZsDEeo&event=video_description&redir_token=7clfSb1AyXDXZa4GVIPiUJ3h9LB8MTU5MDU5MjczOUAxNTkwNTA2MzM5&q=https%3A%2F%2Fwww.cyberhubpodcast.com)

Youtube: https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw (https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw)

Facebook: https://www.facebook.com/CyberHubpodcast/ (https://www.facebook.com/CyberHubpodcast/)

Linkedin: https://www.linkedin.com/company/cyberhubpodcast/

Twitter: https://twitter.com/cyberhubpodcast (http://www.twitter.com/cyberhubpodcast)

Instagram: https://www.instagram.com/cyberhubpodcast

Listen here: https://linktr.ee/cyberhubpodcast (https://linktr.ee/cyberhubpodcast)

 

The Hub of the Infosec Community.

Our mission is to provide substantive and quality content that’s more than headlines or sales pitches. We want to be a valuable source to assist those cybersecurity practitioners in their mission to keep their organizations secure.

Today's Headlines and the latest #cybernews from the desk of the #CISO:

Hackers leak passwords for 500,000 Fortinet VPN accounts

Zoho Confirms Zero-Day Authentication Bypass Attacks

New CPU side-channel attack takes aim at Chrome’s Site Isolation feature

Google Android Security Update Patches 40 Vulnerabilities

 

Story Links:

https://www.bleepingcomputer.com/news/security/hackers-leak-passwords-for-500-000-fortinet-vpn-accounts/ (https://www.bleepingcomputer.com/news/security/hackers-leak-passwords-for-500-000-fortinet-vpn-accounts/)

https://www.securityweek.com/zoho-confirms-zero-day-authentication-bypass-attacks (https://www.securityweek.com/zoho-confirms-zero-day-authentication-bypass-attacks)

https://therecord.media/new-cpu-side-channel-attack-takes-aim-at-chromes-site-isolation-feature/ (https://therecord.media/new-cpu-side-channel-attack-takes-aim-at-chromes-site-isolation-feature/)

https://www.securityweek.com/google-android-security-update-patches-40-vulnerabilities (https://www.securityweek.com/google-android-security-update-patches-40-vulnerabilities)

 

“The Microsoft Doctrine” by James Azar now on Substack https://jamesazar.substack.com/p/the-microsoft-doctrine (https://jamesazar.substack.com/p/the-microsoft-doctrine)

 

CyberWeek Georgia event on September 21st, 2021, get your pass now at https://www.cyberweekgeorgia.com (https://www.cyberweekgeorgia.com/)

 

The Practitioner Brief is sponsored by:

KnowBe4: https://info.knowbe4.com/phishing-security-test-cyberhub (https://info.knowbe4.com/phishing-security-test-cyberhub) 

Attivo Networks: www.attivonetworks.com

****

Find James Azar Host of CyberHub Podcast, CISO Talk, Goodbye Privacy, Tech Town Square, and Other Side of Cyber

James on Linkedin: https://www.linkedin.com/in/james-j-azar/ (https://www.linkedin.com/in/james-j-azar/)

James on Parler: @realjamesazar

Telegram: CyberHub Podcast

Locals: https://cyberhubpodcast.locals.com

******

Sign up for our newsletter with the best of CyberHub Podcast delivered to your inbox once a month: http://bit.ly/cyberhubengage-newsletter (https://www.youtube.com/redirect?v=64OtAZsDEeo&event=video_description&redir_token=7clfSb1AyXDXZa4GVIPiUJ3h9LB8MTU5MDU5MjczOUAxNTkwNTA2MzM5&q=http%3A%2F%2Fbit.ly%2Fcyberhubengage-newsletter)

******

Website: https://www.cyberhubpodcast.com (https://www.youtube.com/redirect?v=64OtAZsDEeo&event=video_description&redir_token=7clfSb1AyXDXZa4GVIPiUJ3h9LB8MTU5MDU5MjczOUAxNTkwNTA2MzM5&q=https%3A%2F%2Fwww.cyberhubpodcast.com)

Youtube: https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw (https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw)

Facebook: https://www.facebook.com/CyberHubpodcast/ (https://www.facebook.com/CyberHubpodcast/)

Linkedin: https://www.linkedin.com/company/cyberhubpodcast/

Twitter: https://twitter.com/cyberhubpodcast (http://www.twitter.com/cyberhubpodcast)

Instagram: https://www.instagram.com/cyberhubpodcast

Listen here: https://linktr.ee/cyberhubpodcast (https://linktr.ee/cyberhubpodcast)

 

The Hub of the Infosec Community.

Our mission is to provide substantive and quality content that’s more than headlines or sales pitches. We want to be a valuable source to assist those cybersecurity practitioners in their mission to keep their organizations secure.

Today's Headlines and the latest #cybernews from the desk of the #CISO:

Microsoft Office Zero-Day Hit in Targeted Attacks

REvil ransomware's servers mysteriously come back online

Jenkins Says Confluence Service Compromised Using Recent Exploit

HAProxy Found Vulnerable to Critical HTTP Request Smuggling Attack (https://thehackernews.com/2021/09/haproxy-found-vulnerable-to-critical.html)

Chinese hackers behind July 2021 SolarWinds zero-day attacks

 

Story Links:

https://www.securityweek.com/microsoft-office-zero-day-hit-targeted-attacks (https://www.securityweek.com/microsoft-office-zero-day-hit-targeted-attacks)

https://www.bleepingcomputer.com/news/security/revil-ransomwares-servers-mysteriously-come-back-online/ (https://www.bleepingcomputer.com/news/security/revil-ransomwares-servers-mysteriously-come-back-online/)

https://www.securityweek.com/jenkins-says-confluence-service-compromised-using-recent-exploit (https://www.securityweek.com/jenkins-says-confluence-service-compromised-using-recent-exploit)

https://thehackernews.com/2021/09/haproxy-found-vulnerable-to-critical.html (https://thehackernews.com/2021/09/haproxy-found-vulnerable-to-critical.html)

https://therecord.media/chinese-hackers-behind-july-2021-solarwinds-zero-day-attacks/ (https://therecord.media/chinese-hackers-behind-july-2021-solarwinds-zero-day-attacks/)

 

“The Microsoft Doctrine” by James Azar now on Substack https://jamesazar.substack.com/p/the-microsoft-doctrine (https://jamesazar.substack.com/p/the-microsoft-doctrine)

 

CyberWeek Georgia event on September 21st, 2021, get your pass now at https://www.cyberweekgeorgia.com (https://www.cyberweekgeorgia.com/)

 

The Practitioner Brief is sponsored by:

KnowBe4: https://info.knowbe4.com/phishing-security-test-cyberhub (https://info.knowbe4.com/phishing-security-test-cyberhub) 

Attivo Networks: www.attivonetworks.com

****

Find James Azar Host of CyberHub Podcast, CISO Talk, Goodbye Privacy, Tech Town Square, and Other Side of Cyber

James on Linkedin: https://www.linkedin.com/in/james-j-azar/ (https://www.linkedin.com/in/james-j-azar/)

James on Parler: @realjamesazar

Telegram: CyberHub Podcast

Locals: https://cyberhubpodcast.locals.com

******

Sign up for our newsletter with the best of CyberHub Podcast delivered to your inbox once a month: http://bit.ly/cyberhubengage-newsletter (https://www.youtube.com/redirect?v=64OtAZsDEeo&event=video_description&redir_token=7clfSb1AyXDXZa4GVIPiUJ3h9LB8MTU5MDU5MjczOUAxNTkwNTA2MzM5&q=http%3A%2F%2Fbit.ly%2Fcyberhubengage-newsletter)

******

Website: https://www.cyberhubpodcast.com (https://www.youtube.com/redirect?v=64OtAZsDEeo&event=video_description&redir_token=7clfSb1AyXDXZa4GVIPiUJ3h9LB8MTU5MDU5MjczOUAxNTkwNTA2MzM5&q=https%3A%2F%2Fwww.cyberhubpodcast.com)

Youtube: https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw (https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw)

Facebook: https://www.facebook.com/CyberHubpodcast/ (https://www.facebook.com/CyberHubpodcast/)

Linkedin: https://www.linkedin.com/company/cyberhubpodcast/

Twitter: https://twitter.com/cyberhubpodcast (http://www.twitter.com/cyberhubpodcast)

Instagram: https://www.instagram.com/cyberhubpodcast

Listen here: https://linktr.ee/cyberhubpodcast (https://linktr.ee/cyberhubpodcast)

 

The Hub of the Infosec Community.

Our mission is to provide substantive and quality content that’s more than headlines or sales pitches. We want to be a valuable source to assist those cybersecurity practitioners in their mission to keep their organizations secure.

Today's Headlines and the latest #cybernews from the desk of the #CISO:

Cisco Patches Critical Enterprise NFVIS Vulnerability for Which PoC Exploit Is Available

FTC Bans Stalkerware App SpyFone; Orders Company to Erase Secretly Stolen Data (https://thehackernews.com/2021/09/ftc-bans-stalkerware-app-spyfone-orders.html)

Recently Patched Confluence Vulnerability Exploited in the Wild

Gutenberg Template Library & Redux Framework Bugs Plague WordPress Sites

Ireland Fines WhatsApp 225M Euros for Breaching EU Privacy Laws

SEC Sanctions Several Companies Over Email Account Hacking

 

Story Links:

https://www.securityweek.com/cisco-patches-critical-enterprise-nfvis-vulnerability-which-poc-exploit-available (https://www.securityweek.com/cisco-patches-critical-enterprise-nfvis-vulnerability-which-poc-exploit-available)

https://thehackernews.com/2021/09/ftc-bans-stalkerware-app-spyfone-orders.html (https://thehackernews.com/2021/09/ftc-bans-stalkerware-app-spyfone-orders.html)

https://www.securityweek.com/recently-patched-confluence-vulnerability-exploited-wild (https://www.securityweek.com/recently-patched-confluence-vulnerability-exploited-wild)

https://threatpost.com/gutenberg-template-library-redux-bugs-wordpress/169111/ (https://threatpost.com/gutenberg-template-library-redux-bugs-wordpress/169111/)

https://www.securityweek.com/ireland-fines-whatsapp-225m-euros-breaching-eu-privacy-laws (https://www.securityweek.com/ireland-fines-whatsapp-225m-euros-breaching-eu-privacy-laws)

https://www.securityweek.com/sec-sanctions-several-companies-over-email-account-hacking (https://www.securityweek.com/sec-sanctions-several-companies-over-email-account-hacking)

 

“The Microsoft Doctrine” by James Azar now on Substack https://jamesazar.substack.com/p/the-microsoft-doctrine (https://jamesazar.substack.com/p/the-microsoft-doctrine)

 

CyberWeek Georgia event on September 21st, 2021, get your pass now at https://www.cyberweekgeorgia.com (https://www.cyberweekgeorgia.com/)

 

The Practitioner Brief is sponsored by:

KnowBe4: https://info.knowbe4.com/phishing-security-test-cyberhub (https://info.knowbe4.com/phishing-security-test-cyberhub) 

Attivo Networks: www.attivonetworks.com

****

Find James Azar Host of CyberHub Podcast, CISO Talk, Goodbye Privacy, Tech Town Square, and Other Side of Cyber

James on Linkedin: https://www.linkedin.com/in/james-j-azar/ (https://www.linkedin.com/in/james-j-azar/)

James on Parler: @realjamesazar

Telegram: CyberHub Podcast

Locals: https://cyberhubpodcast.locals.com

******

Sign up for our newsletter with the best of CyberHub Podcast delivered to your inbox once a month: http://bit.ly/cyberhubengage-newsletter (https://www.youtube.com/redirect?v=64OtAZsDEeo&event=video_description&redir_token=7clfSb1AyXDXZa4GVIPiUJ3h9LB8MTU5MDU5MjczOUAxNTkwNTA2MzM5&q=http%3A%2F%2Fbit.ly%2Fcyberhubengage-newsletter)

******

Website: https://www.cyberhubpodcast.com (https://www.youtube.com/redirect?v=64OtAZsDEeo&event=video_description&redir_token=7clfSb1AyXDXZa4GVIPiUJ3h9LB8MTU5MDU5MjczOUAxNTkwNTA2MzM5&q=https%3A%2F%2Fwww.cyberhubpodcast.com)

Youtube: https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw (https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw)

Facebook: https://www.facebook.com/CyberHubpodcast/ (https://www.facebook.com/CyberHubpodcast/)

Linkedin: https://www.linkedin.com/company/cyberhubpodcast/

Twitter: https://twitter.com/cyberhubpodcast (http://www.twitter.com/cyberhubpodcast)

Instagram: https://www.instagram.com/cyberhubpodcast

Listen here: https://linktr.ee/cyberhubpodcast (https://linktr.ee/cyberhubpodcast)

 

The Hub of the Infosec Community.

Our mission is to provide substantive and quality content that’s more than headlines or sales pitches. We want to be a valuable source to assist those cybersecurity practitioners in their mission to keep their organizations secure.

Today's Headlines and the latest #cybernews from the desk of the #CISO:

QNAP Working on Patches for OpenSSL Flaws Affecting its NAS Devices (https://thehackernews.com/2021/09/qnap-working-on-patches-for-openssl.html)

Cybercriminal sells tool to hide malware in AMD, NVIDIA GPUs

LockBit gang leaks Bangkok Airways data, hits Accenture customers

New Edition of Pipeline Cybersecurity Standard Covers All Control Systems

CISA and the FBI warn of ransomware gangs’ tendency of launching attacks over holidays and weekends

 

Story Links:

https://thehackernews.com/2021/09/qnap-working-on-patches-for-openssl.html (https://thehackernews.com/2021/09/qnap-working-on-patches-for-openssl.html)

https://www.bleepingcomputer.com/news/security/cybercriminal-sells-tool-to-hide-malware-in-amd-nvidia-gpus/ (https://www.bleepingcomputer.com/news/security/cybercriminal-sells-tool-to-hide-malware-in-amd-nvidia-gpus/)

https://www.bleepingcomputer.com/news/security/lockbit-gang-leaks-bangkok-airways-data-hits-accenture-customers/ (https://www.bleepingcomputer.com/news/security/lockbit-gang-leaks-bangkok-airways-data-hits-accenture-customers/)

https://www.securityweek.com/new-edition-pipeline-cybersecurity-standard-covers-all-control-systems (https://www.securityweek.com/new-edition-pipeline-cybersecurity-standard-covers-all-control-systems)

https://therecord.media/cisa-and-the-fbi-warn-of-ransomware-gangs-tendency-of-launching-attacks-over-holidays-and-weekends/ (https://therecord.media/cisa-and-the-fbi-warn-of-ransomware-gangs-tendency-of-launching-attacks-over-holidays-and-weekends/)

 

“The Microsoft Doctrine” by James Azar now on Substack https://jamesazar.substack.com/p/the-microsoft-doctrine (https://jamesazar.substack.com/p/the-microsoft-doctrine)

 

CyberWeek Georgia event on September 21st, 2021, get your pass now at https://www.cyberweekgeorgia.com (https://www.cyberweekgeorgia.com/)

 

The Practitioner Brief is sponsored by:

KnowBe4: https://info.knowbe4.com/phishing-security-test-cyberhub (https://info.knowbe4.com/phishing-security-test-cyberhub) 

Attivo Networks: www.attivonetworks.com

****

Find James Azar Host of CyberHub Podcast, CISO Talk, Goodbye Privacy, Tech Town Square, and Other Side of Cyber

James on Linkedin: https://www.linkedin.com/in/james-j-azar/ (https://www.linkedin.com/in/james-j-azar/)

James on Parler: @realjamesazar

Telegram: CyberHub Podcast

Locals: https://cyberhubpodcast.locals.com

******

Sign up for our newsletter with the best of CyberHub Podcast delivered to your inbox once a month: http://bit.ly/cyberhubengage-newsletter (https://www.youtube.com/redirect?v=64OtAZsDEeo&event=video_description&redir_token=7clfSb1AyXDXZa4GVIPiUJ3h9LB8MTU5MDU5MjczOUAxNTkwNTA2MzM5&q=http%3A%2F%2Fbit.ly%2Fcyberhubengage-newsletter)

******

Website: https://www.cyberhubpodcast.com (https://www.youtube.com/redirect?v=64OtAZsDEeo&event=video_description&redir_token=7clfSb1AyXDXZa4GVIPiUJ3h9LB8MTU5MDU5MjczOUAxNTkwNTA2MzM5&q=https%3A%2F%2Fwww.cyberhubpodcast.com)

Youtube: https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw (https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw)

Facebook: https://www.facebook.com/CyberHubpodcast/ (https://www.facebook.com/CyberHubpodcast/)

Linkedin: https://www.linkedin.com/company/cyberhubpodcast/

Twitter: https://twitter.com/cyberhubpodcast (http://www.twitter.com/cyberhubpodcast)

Instagram: https://www.instagram.com/cyberhubpodcast

Listen here: https://linktr.ee/cyberhubpodcast (https://linktr.ee/cyberhubpodcast)

 

The Hub of the Infosec Community.

Our mission is to provide substantive and quality content that’s more than headlines or sales pitches. We want to be a valuable source to assist those cybersecurity practitioners in their mission to keep their organizations secure.

Today's Headlines and the latest #cybernews from the desk of the #CISO:

New Microsoft Exchange 'ProxyToken' Flaw Lets Attackers Reconfigure Mailboxes (https://thehackernews.com/2021/08/new-microsoft-exchange-proxytoken-flaw.html)

Microsoft shares guidance on securing Azure Cosmos DB accounts

Companies Release Security Advisories in Response to New OpenSSL Vulnerabilities

HPE Warns Sudo Bug Gives Attackers Root Privileges to Aruba Platform

DOJ launches program to train prosecutors in cybersecurity topics

 

Story Links:

https://thehackernews.com/2021/08/new-microsoft-exchange-proxytoken-flaw.html (https://thehackernews.com/2021/08/new-microsoft-exchange-proxytoken-flaw.html)

https://www.bleepingcomputer.com/news/microsoft/microsoft-shares-guidance-on-securing-azure-cosmos-db-accounts/ (https://www.bleepingcomputer.com/news/microsoft/microsoft-shares-guidance-on-securing-azure-cosmos-db-accounts/)

https://www.securityweek.com/companies-release-security-advisories-response-new-openssl-vulnerabilities (https://www.securityweek.com/companies-release-security-advisories-response-new-openssl-vulnerabilities)

https://threatpost.com/hpe-sudo-bug-aruba-platform/169038/ (https://threatpost.com/hpe-sudo-bug-aruba-platform/169038/)

https://therecord.media/doj-launches-program-to-train-prosecutors-in-cybersecurity-topics/ (https://therecord.media/doj-launches-program-to-train-prosecutors-in-cybersecurity-topics/)

 

“The Microsoft Doctrine” by James Azar now on Substack https://jamesazar.substack.com/p/the-microsoft-doctrine (https://jamesazar.substack.com/p/the-microsoft-doctrine)

 

CyberWeek Georgia event on September 21st, 2021, get your pass now at https://www.cyberweekgeorgia.com (https://www.cyberweekgeorgia.com/)

 

The Practitioner Brief is sponsored by:

KnowBe4: https://info.knowbe4.com/phishing-security-test-cyberhub (https://info.knowbe4.com/phishing-security-test-cyberhub) 

Attivo Networks: www.attivonetworks.com

****

Find James Azar Host of CyberHub Podcast, CISO Talk, Goodbye Privacy, Tech Town Square, and Other Side of Cyber

James on Linkedin: https://www.linkedin.com/in/james-j-azar/ (https://www.linkedin.com/in/james-j-azar/)

James on Parler: @realjamesazar

Telegram: CyberHub Podcast

Locals: https://cyberhubpodcast.locals.com

******

Sign up for our newsletter with the best of CyberHub Podcast delivered to your inbox once a month: http://bit.ly/cyberhubengage-newsletter (https://www.youtube.com/redirect?v=64OtAZsDEeo&event=video_description&redir_token=7clfSb1AyXDXZa4GVIPiUJ3h9LB8MTU5MDU5MjczOUAxNTkwNTA2MzM5&q=http%3A%2F%2Fbit.ly%2Fcyberhubengage-newsletter)

******

Website: https://www.cyberhubpodcast.com (https://www.youtube.com/redirect?v=64OtAZsDEeo&event=video_description&redir_token=7clfSb1AyXDXZa4GVIPiUJ3h9LB8MTU5MDU5MjczOUAxNTkwNTA2MzM5&q=https%3A%2F%2Fwww.cyberhubpodcast.com)

Youtube: https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw (https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw)

Facebook: https://www.facebook.com/CyberHubpodcast/ (https://www.facebook.com/CyberHubpodcast/)

Linkedin: https://www.linkedin.com/company/cyberhubpodcast/

Twitter: https://twitter.com/cyberhubpodcast (http://www.twitter.com/cyberhubpodcast)

Instagram: https://www.instagram.com/cyberhubpodcast

Listen here: https://linktr.ee/cyberhubpodcast (https://linktr.ee/cyberhubpodcast)

 

The Hub of the Infosec Community.

Our mission is to provide substantive and quality content that’s more than headlines or sales pitches. We want to be a valuable source to assist those cybersecurity practitioners in their mission to keep their organizations secure.

Today's Headlines and the latest #cybernews from the desk of the #CISO:

FBI Shares IOCs for 'Hive' Ransomware Attacks

Microsoft Warns of Widespread Phishing Attacks Using Open Redirects (https://thehackernews.com/2021/08/microsoft-warns-of-widespread-phishing.html)

CISA, Microsoft Issue Guidance on Recent Azure Cosmos DB Vulnerability

T-Mobile CEO: Hacker brute-forced his way through our network

Exploitation of Flaws in Delta Energy Management System Could Have 'Dire Consequences'

 

Story Links:

https://www.securityweek.com/fbi-shares-iocs-hive-ransomware-attacks (https://www.securityweek.com/fbi-shares-iocs-hive-ransomware-attacks)

https://thehackernews.com/2021/08/microsoft-warns-of-widespread-phishing.html (https://thehackernews.com/2021/08/microsoft-warns-of-widespread-phishing.html)

https://www.securityweek.com/exploitation-flaws-delta-energy-management-system-could-have-dire-consequences (https://www.securityweek.com/exploitation-flaws-delta-energy-management-system-could-have-dire-consequences)

https://www.bleepingcomputer.com/news/security/t-mobile-ceo-hacker-brute-forced-his-way-through-our-network/ (https://www.bleepingcomputer.com/news/security/t-mobile-ceo-hacker-brute-forced-his-way-through-our-network/)

https://www.securityweek.com/cisa-microsoft-issue-guidance-recent-azure-cosmos-db-vulnerability (https://www.securityweek.com/cisa-microsoft-issue-guidance-recent-azure-cosmos-db-vulnerability)

 

“The Microsoft Doctrine” by James Azar now on Substack https://jamesazar.substack.com/p/the-microsoft-doctrine (https://jamesazar.substack.com/p/the-microsoft-doctrine)

 

CyberWeek Georgia event on September 21st, 2021, get your pass now at https://www.cyberweekgeorgia.com (https://www.cyberweekgeorgia.com/)

 

The Practitioner Brief is sponsored by:

KnowBe4: https://info.knowbe4.com/phishing-security-test-cyberhub (https://info.knowbe4.com/phishing-security-test-cyberhub) 

Attivo Networks: www.attivonetworks.com

****

Find James Azar Host of CyberHub Podcast, CISO Talk, Goodbye Privacy, Tech Town Square, and Other Side of Cyber

James on Linkedin: https://www.linkedin.com/in/james-j-azar/ (https://www.linkedin.com/in/james-j-azar/)

James on Parler: @realjamesazar

Telegram: CyberHub Podcast

Locals: https://cyberhubpodcast.locals.com

******

Sign up for our newsletter with the best of CyberHub Podcast delivered to your inbox once a month: http://bit.ly/cyberhubengage-newsletter (https://www.youtube.com/redirect?v=64OtAZsDEeo&event=video_description&redir_token=7clfSb1AyXDXZa4GVIPiUJ3h9LB8MTU5MDU5MjczOUAxNTkwNTA2MzM5&q=http%3A%2F%2Fbit.ly%2Fcyberhubengage-newsletter)

******

Website: https://www.cyberhubpodcast.com (https://www.youtube.com/redirect?v=64OtAZsDEeo&event=video_description&redir_token=7clfSb1AyXDXZa4GVIPiUJ3h9LB8MTU5MDU5MjczOUAxNTkwNTA2MzM5&q=https%3A%2F%2Fwww.cyberhubpodcast.com)

Youtube: https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw (https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw)

Facebook: https://www.facebook.com/CyberHubpodcast/ (https://www.facebook.com/CyberHubpodcast/)

Linkedin: https://www.linkedin.com/company/cyberhubpodcast/

Twitter: https://twitter.com/cyberhubpodcast (http://www.twitter.com/cyberhubpodcast)

Instagram: https://www.instagram.com/cyberhubpodcast

Listen here: https://linktr.ee/cyberhubpodcast (https://linktr.ee/cyberhubpodcast)

 

The Hub of the Infosec Community.

Our mission is to provide substantive and quality content that’s more than headlines or sales pitches. We want to be a valuable source to assist those cybersecurity practitioners in their mission to keep their organizations secure.

Today's Headlines and the latest #cybernews from the desk of the #CISO:

Microsoft Issues Guidance on ProxyShell Vulnerabilities

F5 Releases Critical Security Patches for BIG-IP and BIG-IQ Devices (https://thehackernews.com/2021/08/f5-releases-critical-security-patches.html)

US Media, Retailers Targeted by New SparklingGoblin APT

Researchers Uncover FIN8's New Backdoor Targeting Financial Institutions (https://thehackernews.com/2021/08/researchers-uncover-fin8s-new-backdoor.html)

CISA Details Additional Malware Targeting Pulse Secure Appliances

VMware Issues Patches to Fix New Flaws Affecting Multiple Products (https://thehackernews.com/2021/08/vmware-issues-patches-to-fix-new-flaws.html)

UK to diverge from GDPR in post-Brexit overhaul of privacy rules

 

Story Links:

https://www.securityweek.com/microsoft-issues-guidance-proxyshell-vulnerabilities (https://www.securityweek.com/microsoft-issues-guidance-proxyshell-vulnerabilities)

https://thehackernews.com/2021/08/f5-releases-critical-security-patches.html (https://thehackernews.com/2021/08/f5-releases-critical-security-patches.html)

https://threatpost.com/sparklinggoblin-apt/168928/ (https://threatpost.com/sparklinggoblin-apt/168928/)

https://thehackernews.com/2021/08/researchers-uncover-fin8s-new-backdoor.html (https://thehackernews.com/2021/08/researchers-uncover-fin8s-new-backdoor.html)

https://www.securityweek.com/cisa-details-additional-malware-targeting-pulse-secure-appliances (https://www.securityweek.com/cisa-details-additional-malware-targeting-pulse-secure-appliances)

https://thehackernews.com/2021/08/vmware-issues-patches-to-fix-new-flaws.html (https://thehackernews.com/2021/08/vmware-issues-patches-to-fix-new-flaws.html)

https://www.zdnet.com/article/data-protection-to-diverge-from-gdpr-in-post-brexit-overhaul-of-privacy-rules/ (https://www.zdnet.com/article/data-protection-to-diverge-from-gdpr-in-post-brexit-overhaul-of-privacy-rules/)

 

“The Microsoft Doctrine” by James Azar now on Substack https://jamesazar.substack.com/p/the-microsoft-doctrine (https://jamesazar.substack.com/p/the-microsoft-doctrine)

 

The Practitioner Brief is sponsored by:

KnowBe4: https://info.knowbe4.com/phishing-security-test-cyberhub (https://info.knowbe4.com/phishing-security-test-cyberhub) 

Attivo Networks: www.attivonetworks.com

****

Find James Azar Host of CyberHub Podcast, CISO Talk, Goodbye Privacy, Tech Town Square, and Other Side of Cyber

James on Linkedin: https://www.linkedin.com/in/james-j-azar/ (https://www.linkedin.com/in/james-j-azar/)

James on Parler: @realjamesazar

Telegram: CyberHub Podcast

Locals: https://cyberhubpodcast.locals.com

******

Sign up for our newsletter with the best of CyberHub Podcast delivered to your inbox once a month: http://bit.ly/cyberhubengage-newsletter (https://www.youtube.com/redirect?v=64OtAZsDEeo&event=video_description&redir_token=7clfSb1AyXDXZa4GVIPiUJ3h9LB8MTU5MDU5MjczOUAxNTkwNTA2MzM5&q=http%3A%2F%2Fbit.ly%2Fcyberhubengage-newsletter)

******

Website: https://www.cyberhubpodcast.com (https://www.youtube.com/redirect?v=64OtAZsDEeo&event=video_description&redir_token=7clfSb1AyXDXZa4GVIPiUJ3h9LB8MTU5MDU5MjczOUAxNTkwNTA2MzM5&q=https%3A%2F%2Fwww.cyberhubpodcast.com)

Youtube: https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw (https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw)

Facebook: https://www.facebook.com/CyberHubpodcast/ (https://www.facebook.com/CyberHubpodcast/)

Linkedin: https://www.linkedin.com/company/cyberhubpodcast/

Twitter: https://twitter.com/cyberhubpodcast (http://www.twitter.com/cyberhubpodcast)

Instagram: https://www.instagram.com/cyberhubpodcast

Listen here: https://linktr.ee/cyberhubpodcast (https://linktr.ee/cyberhubpodcast)

 

The Hub of the Infosec Community.

Our mission is to provide substantive and quality content that’s more than headlines or sales pitches. We want to be a valuable source to assist those cybersecurity practitioners in their mission to keep their organizations secure.

Today's Headlines and the latest #cybernews from the desk of the #CISO:

OpenSSL Vulnerability Can Be Exploited to Change Application Data

Modified Version of WhatsApp for Android Spotted Installing Triada Trojan (https://thehackernews.com/2021/08/modified-version-of-whatsapp-for.html)

New iOS Zero-Click Exploit Defeats Apple 'BlastDoor' Sandbox

Ransomware gang's script shows exactly the files they're after

Scammers steal $2.3 million from small US town

 

Story Links:

https://www.securityweek.com/openssl-vulnerability-can-be-exploited-change-application-data (https://www.securityweek.com/openssl-vulnerability-can-be-exploited-change-application-data)

https://thehackernews.com/2021/08/modified-version-of-whatsapp-for.html (https://thehackernews.com/2021/08/modified-version-of-whatsapp-for.html)

https://www.securityweek.com/new-ios-zero-click-exploit-defeats-apple-blastdoor-sandbox (https://www.securityweek.com/new-ios-zero-click-exploit-defeats-apple-blastdoor-sandbox)

https://www.bleepingcomputer.com/news/security/ransomware-gangs-script-shows-exactly-the-files-theyre-after/ (https://www.bleepingcomputer.com/news/security/ransomware-gangs-script-shows-exactly-the-files-theyre-after/)

https://therecord.media/scammers-steal-2-3-million-from-small-us-town/ (https://therecord.media/scammers-steal-2-3-million-from-small-us-town/)

 

“The Microsoft Doctrine” by James Azar now on Substack https://jamesazar.substack.com/p/the-microsoft-doctrine (https://jamesazar.substack.com/p/the-microsoft-doctrine)

 

The Practitioner Brief is sponsored by:

KnowBe4: https://info.knowbe4.com/phishing-security-test-cyberhub (https://info.knowbe4.com/phishing-security-test-cyberhub) 

Attivo Networks: www.attivonetworks.com

****

Find James Azar Host of CyberHub Podcast, CISO Talk, Goodbye Privacy, Tech Town Square, and Other Side of Cyber

James on Linkedin: https://www.linkedin.com/in/james-j-azar/ (https://www.linkedin.com/in/james-j-azar/)

James on Parler: @realjamesazar

Telegram: CyberHub Podcast

Locals: https://cyberhubpodcast.locals.com

******

Sign up for our newsletter with the best of CyberHub Podcast delivered to your inbox once a month: http://bit.ly/cyberhubengage-newsletter (https://www.youtube.com/redirect?v=64OtAZsDEeo&event=video_description&redir_token=7clfSb1AyXDXZa4GVIPiUJ3h9LB8MTU5MDU5MjczOUAxNTkwNTA2MzM5&q=http%3A%2F%2Fbit.ly%2Fcyberhubengage-newsletter)

******

Website: https://www.cyberhubpodcast.com (https://www.youtube.com/redirect?v=64OtAZsDEeo&event=video_description&redir_token=7clfSb1AyXDXZa4GVIPiUJ3h9LB8MTU5MDU5MjczOUAxNTkwNTA2MzM5&q=https%3A%2F%2Fwww.cyberhubpodcast.com)

Youtube: https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw (https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw)

Facebook: https://www.facebook.com/CyberHubpodcast/ (https://www.facebook.com/CyberHubpodcast/)

Linkedin: https://www.linkedin.com/company/cyberhubpodcast/

Twitter: https://twitter.com/cyberhubpodcast (http://www.twitter.com/cyberhubpodcast)

Instagram: https://www.instagram.com/cyberhubpodcast

Listen here: https://linktr.ee/cyberhubpodcast (https://linktr.ee/cyberhubpodcast)

 

The Hub of the Infosec Community.

Our mission is to provide substantive and quality content that’s more than headlines or sales pitches. We want to be a valuable source to assist those cybersecurity practitioners in their mission to keep their organizations secure.

Today's Headlines and the latest #cybernews from the desk of the #CISO:

Realtek SDK Vulnerabilities Exploited in Attacks Days After Disclosure

38 Million Records Exposed from Microsoft Power Apps of Dozens of Organizations

Phishing campaign uses UPS.com XSS vuln to distribute malware

Researchers Warn of 4 Emerging Ransomware Groups That Can Cause Havoc

FBI: OnePercent Group Ransomware targeted US orgs since Nov 2020

 

Story Links:

https://www.securityweek.com/realtek-sdk-vulnerabilities-exploited-attacks-days-after-disclosure (https://www.securityweek.com/realtek-sdk-vulnerabilities-exploited-attacks-days-after-disclosure)

https://thehackernews.com/2021/08/38-million-records-exposed-from.html (https://thehackernews.com/2021/08/38-million-records-exposed-from.html)

https://www.bleepingcomputer.com/news/security/phishing-campaign-uses-upscom-xss-vuln-to-distribute-malware/ (https://www.bleepingcomputer.com/news/security/phishing-campaign-uses-upscom-xss-vuln-to-distribute-malware/)

https://thehackernews.com/2021/08/researchers-warn-of-4-new-ransomware.html (https://thehackernews.com/2021/08/researchers-warn-of-4-new-ransomware.html)

https://www.bleepingcomputer.com/news/security/fbi-onepercent-group-ransomware-targeted-us-orgs-since-nov-2020/ (https://www.bleepingcomputer.com/news/security/fbi-onepercent-group-ransomware-targeted-us-orgs-since-nov-2020/)

 

Hacking MFA Webinar with Roger Grimes of KnowBe4, Tuesday August 24th, 2021, at 11 AM EST

Register here: https://us06web.zoom.us/webinar/register/WN_G2wKG4YIS9WhB8ks01eO6A

 

“The Microsoft Doctrine” by James Azar now on Substack https://jamesazar.substack.com/p/the-microsoft-doctrine (https://jamesazar.substack.com/p/the-microsoft-doctrine)

 

The Practitioner Brief is sponsored by:

KnowBe4: https://info.knowbe4.com/phishing-security-test-cyberhub (https://info.knowbe4.com/phishing-security-test-cyberhub) 

Attivo Networks: www.attivonetworks.com

****

Find James Azar Host of CyberHub Podcast, CISO Talk, Goodbye Privacy, Tech Town Square, and Other Side of Cyber

James on Linkedin: https://www.linkedin.com/in/james-j-azar/ (https://www.linkedin.com/in/james-j-azar/)

James on Parler: @realjamesazar

Telegram: CyberHub Podcast

Locals: https://cyberhubpodcast.locals.com

******

Sign up for our newsletter with the best of CyberHub Podcast delivered to your inbox once a month: http://bit.ly/cyberhubengage-newsletter (https://www.youtube.com/redirect?v=64OtAZsDEeo&event=video_description&redir_token=7clfSb1AyXDXZa4GVIPiUJ3h9LB8MTU5MDU5MjczOUAxNTkwNTA2MzM5&q=http%3A%2F%2Fbit.ly%2Fcyberhubengage-newsletter)

******

Website: https://www.cyberhubpodcast.com (https://www.youtube.com/redirect?v=64OtAZsDEeo&event=video_description&redir_token=7clfSb1AyXDXZa4GVIPiUJ3h9LB8MTU5MDU5MjczOUAxNTkwNTA2MzM5&q=https%3A%2F%2Fwww.cyberhubpodcast.com)

Youtube: https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw (https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw)

Facebook: https://www.facebook.com/CyberHubpodcast/ (https://www.facebook.com/CyberHubpodcast/)

Linkedin: https://www.linkedin.com/company/cyberhubpodcast/

Twitter: https://twitter.com/cyberhubpodcast (http://www.twitter.com/cyberhubpodcast)

Instagram: https://www.instagram.com/cyberhubpodcast

Listen here: https://linktr.ee/cyberhubpodcast (https://linktr.ee/cyberhubpodcast)

 

The Hub of the Infosec Community.

Our mission is to provide substantive and quality content that’s more than headlines or sales pitches. We want to be a valuable source to assist those cybersecurity practitioners in their mission to keep their organizations secure.