Effective training and senior leadership buy-in are critical to creating a security-first culture, according to cyber experts
Yearly Archives: 2022
#CCSE22: “Zero Trust Model Is Becoming the Default Cyber Posture,” Claims Expert
Fredrik Hult, CISO at PagoNxt, argued that the “mother of all paradigm shifts” is here
shapelib-1.5.0-12.fc36
FEDORA-2022-216f0a205a
Packages in this update:
shapelib-1.5.0-12.fc36
Update description:
Backport fix for CVE-2022-0699.
mingw-protobuf-3.14.0-4.fc34
FEDORA-2022-fedff53e4e
Packages in this update:
mingw-protobuf-3.14.0-4.fc34
Update description:
Backport fix for CVE-2021-22570.
mingw-protobuf-3.14.0-4.fc35
FEDORA-2022-486d5f349d
Packages in this update:
mingw-protobuf-3.14.0-4.fc35
Update description:
Backport fix for CVE-2021-22570.
#CCSE22: The Need to Change Course in User Cybersecurity Training
Professor Steven Purnell discusses why organizations should take a completely new approach to staff security training
Vulnerability in Stalkerware Apps
TechCrunch is reporting — but not describing in detail — a vulnerability in a series of stalkerware apps that exposes personal information of the victims. The vulnerability isn’t in the apps installed on the victims’ phones, but in the website the stalker goes to view the information the app collects. The article is worth reading, less for the description of the vulnerability and more for the shadowy string of companies behind these stalkerware apps.
How security vendors are aiding Ukraine
Since Russia launched a full-scale military invasion into Ukraine on February 23, a series of cyberattacks have been detected targeting Ukrainian businesses, websites and government agencies amid the ongoing conflict. Meanwhile, organizations in the cybersecurity sector have begun taking action to provide help and support to those directly and subsequently impacted by cyber incidents relating to the Ukraine-Russia crisis. Here is a list of the cybersecurity vendors currently known to be offering aid.
Vectra AI: Threat detection and response vendor Vectra AI is offering a slate of free cybersecurity tools and services to organizations who believe they may be targeted by cyberattacks in the Ukraine-Russia conflict. For immediate assistance in the current emergency, Vectra AI is offering several services on a complimentary basis. These include scanning of Microsoft Azure Active Directory (AD), Microsoft 365 and AWS environments for signs of attack, surveillance of network infrastructure both in the cloud and on-premises and supporting the retention of historical metadata to aid incident response investigations based on indicators of compromise for specific attack variants. It is also offering technology from Siriux to immediately discover malicious Microsoft Azure AD activity that could lead to the compromise of Exchange Online mailboxes.
SentinelOne: SentinelOne is offering its singularity XDR platform free of charge for 90 days to Ukrainian companies as its teams look to provide support for those in need by sharing research, recommendations, indicators, and tools to stay on top of the evolving threat landscape.
Avast: Cybersecurity software provider Avast has released a decryptor for HermeticRansom, a new ransomware strain accompanying the data wiper HermeticWiper malware circulating in the Ukraine, which was discovered by ESET on February 23. The tool can be used to decrypt devices infected with HermeticRansom and allows users to recover files.
Cybersecurity vendors respond to the Ukraine-Russia conflict
Since Russia launched a full-scale military invasion into Ukraine on February 23, a series of cyberattacks have been detected targeting Ukrainian businesses, websites and government agencies amid the ongoing conflict. Meanwhile, organizations in the cybersecurity sector have begun taking action to provide help and support to those directly and subsequently impacted by cyber incidents relating to the Ukraine-Russia crisis. Here is a list of the cybersecurity vendors currently known to be offering aid.
Vectra AI: Threat detection and response vendor Vectra AI is offering a slate of free cybersecurity tools and services to organizations who believe they may be targeted by cyberattacks in the Ukraine-Russia conflict. For immediate assistance in the current emergency, Vectra AI is offering several services on a complimentary basis. These include scanning of Microsoft Azure Active Directory (AD), Microsoft 365 and AWS environments for signs of attack, surveillance of network infrastructure both in the cloud and on-premises and supporting the retention of historical metadata to aid incident response investigations based on indicators of compromise for specific attack variants. It is also offering technology from Siriux to immediately discover malicious Microsoft Azure AD activity that could lead to the compromise of Exchange Online mailboxes.
SentinelOne: SentinelOne is offering its singularity XDR platform free of charge for 90 days to Ukrainian companies as its teams look to provide support for those in need by sharing research, recommendations, indicators, and tools to stay on top of the evolving threat landscape.
Bitdefender: Global cybersecurity firm Bitdefender has expanded its collaboration with Romania’s National Cyber Security Directorate (DNSC) to provide technical consulting, threat intelligence and, free of charge, cybersecurity technology to any business, government institution, or private citizen of Ukraine for as long as it is necessary. Additionally, the Directorate, in partnership with Bitdefender, will provide free cybersecurity technologies for one year to any company or public entity from NATO or European Union space who seeks to enhance their cybersecurity posture by replacing cybersecurity solutions which present trust concerns from a technical or geopolitical perspective.
CrowdStrike: Endpoint protection, threat intelligence, and response company CrowdStrike has released a new tool to decrypt “PartyTicket” ransomware targeting Ukrainian entities since February 23. The firm stated that the ransomware contains implementation errors, making its encryption breakable and slow.
Microsoft: In a blog post on February 28, Microsoft President Brad Smith outlined steps the company has taken to help protect Ukrainian systems. This includes threat detection and remediation, most notably the discovery of a new wiper malware package, and limiting the success of Russian disinformation campaigns.
Cloudflare: On February 24, Cloudflare announced that it had removed all customer cryptographic data from its servers in Ukraine. The move was intended to protect people and data should those servers fall into Russia’s hands. The company continues to serve traffic via its Keyless SSL service.
More on cyberattacks:
pipenv-2021.5.29-7.fc37
FEDORA-2022-8a01f4e871
Packages in this update:
pipenv-2021.5.29-7.fc37
Update description:
Automatic update for pipenv-2021.5.29-7.fc37.
Changelog
* Thu Feb 24 2022 Tomas Orsava <torsava@redhat.com> – 2021.5.29-7
– Fix for CVE-2022-21668
Resolves: rhbz#2039830