November 7, 2022
David Redekop

This Week In Nerd News (TWINN) – November 7, 2022

TWINN #97 Exemplary Breach Disclosure by Dropbox

YouTube video

Every once in a while we are pleasantly surprised even in the world of cyber security. When we typically see breaches and compromises, the stakeholders of affected businesses all too often scramble and are unsure of the best steps to take. That’s why we frequently see that breaches are not disclosed for fear of further harm. But today we do have one example that everyone should hold up as an example on how to disclose what happened as well as sharing the next steps:

How we handled a recent phishing incident that targeted Dropbox. Well done, Dropbox!

Why Egypt became one of the biggest chokepoints for internet cables

History and Geography are fascinating subjects that never get old. Understanding them can help us to make better business decisions all around.

Read More: Why Egypt became one of the biggest chokepoints for Internet cables.

Crime group hijacks hundreds of US news websites to push malware.

Who would have thought that browsing the news could be risky? Good news is that with Zero Trust connectivity, even visiting an injected website like this one kept you immune.

Read More: Crime group hijacks hundreds of US news websites to push malware.

Cyber-attack on Australian defence contractor may have exposed private communications between ADF members.

“Dataset from communications platform ForceNet containing up to 40,000 records may be compromised after breach on external provider”. Security is still hard.

Read More: Cyber-attack on Australian defence contractor may have exposed private communications between ADF members.

Greece’s spyware scandal expands further.

Advanced spyware for smartphones came to the forefront with Pegasus, which could successfully compromise fully-patched iPhones. This story is about Predator which also starts an infection by a user clicking a link. Just because Zero Day protection is available, doesn’t mean it’s been applied.

Read More: Greece’s spyware scandal expands further.

Did you know?

the U.K. National Cyber Security Centre scans the U.K. internet space for known serious vulnerabilities? Well, now you do. The same goes for US and Canadian law enforcement as we’ve experienced this ourselves.

And just for a fun cyber-security meme from the NSA Director:

https://twitter.com/NSA_CSDirector/status/1584542581257486336

Need an IT professional? Request service today.