Your weekly top 5 technical and security issues Nerds should pay attention to:
Apple Is Going to Make It Harder to Hack iPhones With Zero-Click Attacks. In iOS 14.5 it will become that much harder for zero-click attacks to occur. Update as soon as it’s out.
Russia’s GRU has targeted electrical grid access for years. KAMACITE represents a long-running set of related behaviors targeting critical infrastructure and industrial verticals since at least 2014. KAMACITE facilitated ICS-specific operations including the BLACKENERGY2 campaign and the 2015 and 2016 Ukraine power events.
The ‘real consequences’ of ransomware against schools. Research shows there have been at least 130 ransomware incidents involving school districts across the U.S. since 2016, and it’s getting worse.
Remember the 30,000+ “Silver Sparrow” macOS infections? Apple has now revoked the developer’s certificate, which prevents the infection from spreading further.
Hard-coded key vulnerability in Logix PLCs has severity score of 10 out of 10. Each week we see new evidence of the need of network segmentation, egress control, zero trust networks.
Did you know?
On macOS there’s a Flotato app that converts a website into an app. Cool for your daily news check from specific sites. Not so cool for security-key requiring services as it’s not yet compatible.
For a video version of the above, see https://youtu.be/0h0QOMb10NM