El Diario del CISO El Diario del CISO (The CISO Journal) Edición 25 | Page 9

EU telecoms suffered 169 major security incidents in 2017 Healthcare CISOs: Manage infosec risks and safeguard patient safety How lucrative is web-based cryptojacking? Android OS API-Breaking Flaw Offers Useful WiFi Data to Bad Actors Bucking the Norm, Mozilla to Block Tracking Cookies in Firefox BusyGasper Malware Packs a Simple but Potent Punch Microsoft Windows Zero-Day Found in Task Scheduler Critical Flaws in Syringe Pump, Device Gateways Threaten Patient Safety Facebook Flaw Allowed Remote Commands High-Severity Flaws Patched in Schneider Electric Products MagentoCore Card Skimmer Found on Mass Numbers of E-Commerce Sites Microsoft Zero-Day Exploit Published Before Patch Breach Reveal: PG&E Exposed 30,000 Sensitive Records CISO Council to Address Vendor Risk Management Challenges Cosmos Bank Heist: No Evidence Major Hacking Group Involved Election Security: FBI Combats Information Operations Healthcare Cybersecurity: Helping the Little Guy Air Canada mobile app breach potentially impacts about 20,000 profiles Android spyware BusyGasper has many features, but few known victims Bank of Spain hit with DDoS attack BEC fraud burgeoning despite training Green card lottery website scam raises red flags Microsoft Windows task manager contains local privilege escalation vulnerability Why pushback on the CCPA is wrong Yahoo woos advertisers with email scanning for targeted ad delivery Your data center's IT is lock-tight, are the facility's operations? New Threat Actor 'Rocke': A Rising Monero Cryptomining Menace Newsmaker Interview: Derek Manky on 'Self-Organizing Botnet Swarms' Podcast: Plugging Leaky Data in the Cloud Researchers Shine Light on Smart-Bulb Data Theft ThreatList: Ransomware Attacks Down, Fileless Malware Up in 2018 ThreatList: Security Pros Confident They Could Compromise Their Own Orgs Travel Breaches Hit Air Canada and Asia-Pac Hotelier Yahoo Persists in Scanning Emails for In-Depth Ad-Targeting Philips, BD Yet Again Issue Medical Device Security Alerts Police Probe Sale of 130 Million Chinese Hotel-Goers' Data Russian Trolls 'Spread Vaccine Misinformation' Online Securing IoT: Is It Feasible? T-Mobile Database Breach Exposes 2 Million Customers' Data The Moral Responsibility Of Social Networks Protecting blind spots — or, the search for security's next big thing Rate limit vulnerabilities left AT&T, T-Mobile customer PINs prone to brute- force attacks Report: GDPR restrictions on researchers have so far not resulted in spam increase Researchers find new POS malware with no data exfiltration capabilities Threat Intelligence Group Opener NIST issues guidance for protecting medical IoT devices Advanced Android Spyware Remained Hidden for Two Years Loki Bot Attacks Target Corporate Mailboxes CEIDPageLock Rootkit Hijacks Web Browsers China Probes Suspected Customer Data Leak at Accor Partner Critical Vulnerability Patched in PHP Package Repository Hackers Hit Air Canada Mobile App How Cybercriminals Are Using Blockchain to Their Advantage New Cobalt Campaign Targets Russian and Romanian Banks Researchers Draw Connections Between APTs Third-Party Patch Released for Windows Zero-Day Three Ways of Looking at Security Operations