Tag: Cybersecurity

(Cybersecurity) Efficient and transparent data subject access builds customer loyalty (SC Media)

Steve Dickson Even as companies face the IT challenges of supporting remote work through the rest of the pandemic, data privacy and regulatory compliance remain...

(Cybersecurity) Five privilege escalation flaws fixed in Linux Kernel (Security Affairs)

Pierluigi Paganini Experts found five vulnerabilities in the Linux kernel, tracked as CVE-2021-26708, that could lead to local privilege escalation. https://securityaffairs.co/wordpress/115296/security/privilege-escalation-flaws-linux-kernel.html

(Cybersecurity) GRUB2 boot loader maintainers fixed hundreds of flaws (Security Affairs)

Pierluigi Paganini Now maintainers at the GRUB project have released security updates to address more than 100 vulnerabilities https://securityaffairs.co/wordpress/115258/hacking/grub2-boot-loader-flaws.html

(Cybersecurity) Group-IB: ransomware empire prospers in pandemic-hit world. Attacks grow by 150% (Security Affairs)

Pierluigi Paganini Group-IB published a report titled “Ransomware Uncovered 2020-2021”. analyzes ransomware landscape in 2020 and TTPs of major threat actors. https://securityaffairs.co/wordpress/115268/cyber-crime/ransomware-landscape-2020.html

(Cybersecurity) Four zero-days in Microsoft Exchange actively exploited in the wild (Security Affairs)

Pierluigi Paganini Microsoft released emergency out-of-band security updates for all supported Microsoft Exchange versions that fix four zero-day flaws. https://securityaffairs.co/wordpress/115194/hacking/microsoft-exchange-zero-days.html

(Cybersecurity) Google fixes Critical Remote Code Execution issue in Android System component (Security Affairs)

Pierluigi Paganini Google addressed 37 vulnerabilities with the release of the Android security updates for March 2021, including a critical flaw in the System component. https://securityaffairs.co/wordpress/115189/mobile-2/google-android-rce-2.html

(Cybersecurity) Pwn20wnd released the unc0ver v 6.0 jailbreaking tool (Security Affairs)

Pierluigi Paganini The popular jailbreaking tool called “unc0ver” now supports iOS 14.3 and earlier releases, and is able to unlock almost every iPhone device. https://securityaffairs.co/wordpress/115182/mobile-2/jailbreaking-tool-unc0ver-6.html

(Cybersecurity) French multinational dairy Lactalis hit by a cyber attack (Security Affairs)

Pierluigi Paganini French multinational dairy products corporation Lactalis discloses cyberattack, but claimed that had no evidence of a data breach. https://securityaffairs.co/wordpress/115173/hacking/lactalis-cyber-attack.html

(Cybersecurity) Distributor of Asian food JFC International hit by Ransomware (Security Affairs)

Pierluigi Paganini JFC International, a major wholesaler and distributor of Asian food products in the United States, was hit by ransomware. https://securityaffairs.co/wordpress/115150/malware/jfc-international-ransomware-attack.html

(Cybersecurity) Alleged China-linked APT41 group targets Indian critical infrastructures (Security Affairs)

Pierluigi Paganini Recorded Future researchers uncovered a campaign conducted by Chinese APT41 group targeting critical infrastructure in India. https://securityaffairs.co/wordpress/115156/apt/china-apt41-india.html

(Cybersecurity) Hackers are finding ways to hide inside Apple’s walled garden (MIT Technology Review)

Patrick Howell O'Neill The iPhone’s locked-down approach to security is spreading, but advanced hackers have found that higher barriers are great for avoiding capture. https://www.technologyreview.com/2021/03/01/1020089/apple-walled-garden-hackers-protected/?truid=&utm_source=the_download&utm_medium=email&utm_campaign=the_download.unpaid.engagement&utm_term=&utm_content=03-01-2021&mc_cid=0edceb332a&mc_eid=e4d30af98f

(Cybersecurity) 3 principles to reinforce digital trust in supply chains (WEF)

Georges de Moura, Christophe Blassiau Cyber-threats are increasing with the transformation of digital life in the wake of the pandemic. https://www.weforum.org/agenda/2021/02/cybersecurity-hacker-proofing-digital-supply-chains/

(Data Protection/Cybersecurity) Do data protection laws really improve cybersecurity? Highlights from my conversation with Emily Taylor (AEI)

Shane Tews Data protection and privacy laws must strike a difficult balance between individual privacy and cybersecurity. For example, what happens when a cyberattacker’s identity...

(USA/Cybersecurity) DHS announces new measures to boost nation’s cybersecurity (The Hill)

MAGGIE MILLER The Department of Homeland Security (DHS) on Monday announced a range of steps it will take to bolster the nation’s cybersecurity posture, including...

(USA/Russia/Cybersecurity) Why Joe Biden Should Start a Cybersecurity Dialogue With Russia (The National Interest)

Daniel Rakov, Yochai Guisky High-level political dialogue might identify the slim common ground to curb cyber-hostilities, with quid-pro-quos not necessarily confined to the cybersphere. https://nationalinterest.org/blog/buzz/why-joe-biden-should-start-cybersecurity-dialogue-russia-178422

(USA/China/Cybersecurity) Why America Needs a Clear Policy to Deal With Chinese Cyber Security Concerns (The National Interest)

Klon Kitchen Access to Americans’ data through apps like TikTok and companies like Huawei is a real problem. https://nationalinterest.org/blog/buzz/why-america-needs-clear-policy-deal-chinese-cyber-security-concerns-178434