Welcome to this week in NerdNews (TWINN). Your weekly top 5 technical and security issues Nerds should pay attention to:
Even though last week we started seeing some overall good trends, it seems we’ve lost those positive trends by threats larger than ever before:
MediaMarkt hit by Hive ransomware, initial $240 million ransom. While they don’t operate in our market, it’s noteworthy how dangerous Hive is and how they using phishing campaigns very effectively.
Hoax Email Blast Abused Poor Coding in FBI Website. Our team received this hoax email as well, and after a momentary shock, it quickly wore off when things didn’t add up. The FBI has updated their statement.
PSA: Apple isn’t actually patching all the security holes in older versions of macOS. Serious macOS users tend to stay on the latest version, but for those that use their mac strictly as a tool and stay a version or two behind, this is of great concern.
ActMobile, which runs Dash VPN and FreeVPN, exposed IP and email addresses. It is amazing how large the retail VPN industry is, but in reality, the only way to make use of the true value of a VPN is to run the VPN infrastructure yourself or have someone run it that you trust. Increasingly we are seeing that retail VPN providers are not trustworthy.
Malware Campaign Deploys Godzilla Webshells To Flatten Healthcare, Defense And Energy Systems. It is becoming increasingly important to understand how persistence works in networks because that has traditionally been difficult to achieve. However, with a ZeroTrust approach, it is definitely 100% preventable.
Did you know?
Pentagon ‘zero trust’ cyber office coming in December. It won’t be a moment too early, either.
For a video version of this see: https://youtu.be/gIVVMLlU4ZI
