Today's Headlines and the latest #cybernews from the desk of the #CISO:

US Senate confirms Jen Easterly as head of cyber agency

SolarWinds Confirms New Zero-Day Flaw Under Attack

Kaseya Patches Zero-Days Used in REvil Attacks

Critical RCE Vulnerability in ForgeRock OpenAM Under Active Attack

Trickbot Malware Returns with a new VNC Module to Spy on its Victims (https://thehackernews.com/2021/07/trickbot-malware-returns-with-new-vnc.html)

 

Story Links:

https://www.zdnet.com/article/us-senate-confirms-jen-easterly-as-head-of-cyber-agency/ (https://www.zdnet.com/article/us-senate-confirms-jen-easterly-as-head-of-cyber-agency/)

https://www.securityweek.com/solarwinds-confirms-new-zero-day-flaw-under-attack (https://www.securityweek.com/solarwinds-confirms-new-zero-day-flaw-under-attack)

https://threatpost.com/kaseya-patches-zero-days-revil-attacks/167670/ (https://threatpost.com/kaseya-patches-zero-days-revil-attacks/167670/)

https://threatpost.com/critical-vulnerability-rce-forgerock-openam/167679/ (https://threatpost.com/critical-vulnerability-rce-forgerock-openam/167679/)

https://thehackernews.com/2021/07/trickbot-malware-returns-with-new-vnc.html (https://thehackernews.com/2021/07/trickbot-malware-returns-with-new-vnc.html)

 

“The Microsoft Doctrine” by James Azar now on Substack https://jamesazar.substack.com/p/the-microsoft-doctrine (https://jamesazar.substack.com/p/the-microsoft-doctrine)

 

CISOTalk Webinar Series: Closing the Gap Between Endpoints and Identity Protection with Carolyn Crandall and Joseph Salazar from Attivo Networks: Sign up here: https://us06web.zoom.us/webinar/register/WN_UNRepQ7mST-D8j46os228Q

 

The Practitioner Brief is sponsored by:

KnowBe4: https://info.knowbe4.com/phishing-security-test-cyberhub (https://info.knowbe4.com/phishing-security-test-cyberhub) 

Whistic: www.whistic.com/cyberhub (http://www.whistic.com/cyberhub)

Attivo Networks: www.attivonetworks.com

****

Find James Azar Host of CyberHub Podcast, CISO Talk, Goodbye Privacy, Tech Town Square, and Other Side of Cyber

James on Linkedin: https://www.linkedin.com/in/james-j-azar/ (https://www.linkedin.com/in/james-j-azar/)

James on Parler: @realjamesazar

Telegram: CyberHub Podcast

******

Sign up for our newsletter with the best of CyberHub Podcast delivered to your inbox once a month: http://bit.ly/cyberhubengage-newsletter (https://www.youtube.com/redirect?v=64OtAZsDEeo&event=video_description&redir_token=7clfSb1AyXDXZa4GVIPiUJ3h9LB8MTU5MDU5MjczOUAxNTkwNTA2MzM5&q=http%3A%2F%2Fbit.ly%2Fcyberhubengage-newsletter)

******

Website: https://www.cyberhubpodcast.com (https://www.youtube.com/redirect?v=64OtAZsDEeo&event=video_description&redir_token=7clfSb1AyXDXZa4GVIPiUJ3h9LB8MTU5MDU5MjczOUAxNTkwNTA2MzM5&q=https%3A%2F%2Fwww.cyberhubpodcast.com)

Youtube: https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw (https://www.youtube.com/channel/UCPoU8iZfKFIsJ1gk0UrvGFw)

Facebook: https://www.facebook.com/CyberHubpodcast/ (https://www.facebook.com/CyberHubpodcast/)

Linkedin: https://www.linkedin.com/company/cyberhubpodcast/

Twitter: https://twitter.com/cyberhubpodcast (http://www.twitter.com/cyberhubpodcast)

Instagram: https://www.instagram.com/cyberhubpodcast

Listen here: https://linktr.ee/cyberhubpodcast (https://linktr.ee/cyberhubpodcast)

 

The Hub of the Infosec Community.

Our mission is to provide substantive and quality content that’s more than headlines or sales pitches. We want to be a valuable source to assist those cybersecurity practitioners in their mission to keep their organizations secure.