El Diario del CISO El Diario del CISO (The CISO Journal) Edición 34 | Page 4

EL DIARIO DEL CISO (THE CISO JOURNAL) Pensando y Trabajando por un Líder de Seguridad Digital diferente International InfoSec & Cybersecurity News Evidence in Starwood/Marriott Breach May Point to China Attackers used methods, tools previously used by known Chinese hackers. Speculation about the criminals responsible for the Starwood/Marriot breach has centered on nation-state actors. Humble Bundle hit with data breach Malware authors reporting competitiors to Google Marriott hit with two class action suits over data breach Marriott to replace passports after breach Moldovian sentenced for stealing millions using Bugat banking malware New Mac malware 'DarthMiner' joins the dark side NRCC emails hacked during 2018 midterms 'London Blue' BEC Cybercrime Gang Unmasked Quora data breach compromises 100 million users 'Simplify Everything': Google Talks Container ... Redwood Eye Care subcontractor hit with ransomware Researchers: Syrian Electronic Army targeting secure messaging app users with spyware Russian national hacks Pittsburgh Golf course 5 Emerging Trends in Cybercrime 55% of Companies Don't Offer Mandatory Security ... 6 CISO Resolutions for 2019 6 Cloud Security Predictions for 2019 6 Ways to Strengthen Your GDPR Compliance Efforts 7 Common Breach Disclosure Mistakes A Shift from Cybersecurity to Cyber Resilience: 6 Steps Adobe Flash Zero-Day Spreads via Office Docs Backdoors Up 44%, Ransomware Up 43% from 2017 Criminals Use Locally Connected Devices to Attack, ... CrowdStrike: More Organizations Now Self-Detect ... DanaBot Malware Adds Spam to its Menu DHS, FBI Issue SamSam Advisory Seedworm cyberespionage gang using new tricks to dig up info Sotheby's Home hit by Magecart Word Press botnet army attacking fellow Word Press sites SC Media Quora Breach Hits 100 Million Users Infosecurity-Magazine Quora has become the latest big-name tech firm to suffer a major data breach, after revealing that personal information on 100 million users may have been compromised Filling the Cybersecurity Jobs Gap - Now and in the ... First Lawsuits Filed in Starwood Hotels' Breach Former Estonian Foreign Minister Urges Cooperation ... How Well Is Your Organization Investing Its ... Influence Agents' Used Twitter to Sway 2018 Midterms Insider Threats & Insider Objections Iranian Nationals Charged for Atlanta Ransomware Attack Jared, Kay Jewelers Web Vuln Exposes Shoppers' Data Kubernetes Deployments Around the World Show ... Kubernetes Vulnerability Hits Top of Severity Scale New Google+ Breach Will Lead to Early Service Shutdown Quora Breach Exposes Information of 100 Million Users Republican Committee Email Hacked During Midterms Starwood Breach Reaction Focuses on 4-Year Dwell The Case for a Human Security Officer Toyota Builds Open-Source Car-Hacking Tool Kubernetes vulnerability impacting Red Hat OpenShift SCMagazine Red Hat has disclosed a flaw in that was reported by the Kubernetes’ community that if left unpatched could give an unauthorized party the ability to escalate their privileges on Kubernetes #BHEU: Attribution & Offensive Capabilities Changed Cybersecurity in 2018 #BHEU: We Must Update Cybersec Education to Develop More Security Experts #NICEK12: Creating a Paradigm Shift in Cyber #NICEK12: Increasing Cyber Career Awareness BEC Crime Gang Lines Up 50,000 Global Execs DanaBot Trojan Expands Beyond Banking DarkVishnya Attacks Target Eastern European Banks Emotet and Trickbot Are the Future of Malware GDPR Implementation Slow but Improving House Releases Cybersecurity Strategy Report IoT Backbone is Riddled with Security Issues Magecart Delivers Malware to 1-800-FLOWERS Nearly 70% of UK Firms Suffered a Cyber-Attack in 2018 New Head of Security Business Announced at BT NHS Fax Ban Set to Improve Security from 2020 Nokia: IoT Botnets Comprise 78% of Malware on Networks Quarter of NHS Trusts Have No Security Pros Reported Cybercrime Jumps 14% in England Republican Party Breached in Major Cyber-Attack – Report Researchers Find Major Kubernetes Flaw Russian Ransomware Brokers Scam Victims Teen Email Hoaxer Gets Three Years Two-Fifths of Firms Have Suffered 'BPC' Attacks UK Consumers Have Lost £500 Each Through Online Crime 21 Linux malware families spotted, complex backdoor capabilities Adobe fixes zero-day Flash bug after attackers target Russian clinic with exploit Australia passes law forcing tech giants to circumvent encryption on target devices Canadian 1-800-FLOWERS operation discloses four-year breach City of North Bend hit with ransomware Company's ransomware decryption service is a sham, researchers report Cryptomining campaign introduces new 'Linux Rabbit' malware Cyber bank robbers steal millions using USB drives Cybergang Compiles Phishing list of 50,000 Executives Cybersecurity executive changes DanaBot banking trojan adds sly spam feature, distributes GootKit malware Fake fitness apps steal money using Apple's Touch ID feature Gamaredon, like Fancy Bear and Cozy Bear, steps up cyberattacks against Ukraine, others GandCrab added to Sextortion attacks Ukraine: We Blocked Major Russian Attack on Judiciary Australia: Parliament passes anti-encryption bill HelpNet Security The Parliament of Australia has passed the Assistance and Access Bill 2018, which allows Australian authorities to pressure communication providers and tech companies 10 trends impacting infrastructure and operations for 2019 80% of enterprises struggle to protect machine identities Adobe patches newly exploited Flash zero-day Best practice methodology for industrial network security: SEC-OT Consumers believe social media sites pose greatest risk to data Detecting malicious behavior blended with business-justified activity www.cisos.club [email protected]