March 8, 2021

ITWC is providing multiple opportunities for women in technology to be recognized for their efforts as technology and business leaders.
The post ITWC launches fintech and blockchain recognition program and searches for Canada’s top women in cybersecuri…

Read More ITWC launches fintech and blockchain recognition program and searches for Canada’s top women in cybersecurity

Today, March 8, we are proud to celebrate International Women’s Day. The United Nations announced this year’s theme as “Women in leadership: Achieving an equal future in a COVID-19 world.” As a woman, a mother, a daughter, a sister, a friend and a leader at Microsoft, this is an important time to acknowledge and celebrate the strength and resiliency women have shown during this pandemic.

The post International Women’s Day: How to support and grow women in cybersecurity appeared first on Microsoft Security.

Read More International Women’s Day: How to support and grow women in cybersecurity

Today Yoroi released its last cybersecurity report (available HERE). Following I am copying one of its chapters to give you a little flawor about what you can get for free by downloading it ! Hope you might like its contents. The volume of the malicious code produced and disseminated in the wild is constantly increasing. […]

Read More 0-Day Malware (2020)

Experts warn of ongoing attacks targeting QNAP network-attached storage (NAS) devices to abuse them in cryptocurrency mining. Researchers at 360Netlab are warning of a cryptocurrency malware campaign targeting unpatched network-attached storage (NAS) devices. via the unauthorized remote command execution vulnerability (CVE-2020-2506 & CVE-2020-2507) Threat actors are exploiting two unauthorized remote command execution vulnerabilities, tracked as CVE-2020-2506 & […]

The post UnityMiner targets unpatched QNAP NAS in cryptocurrency mining campaign appeared first on Security Affairs.

Read More UnityMiner targets unpatched QNAP NAS in cryptocurrency mining campaign

The European Banking Authority (EBA) disclosed a cyberattack that resulted in the hack of its Microsoft Exchange email system. The European Banking Authority announced that it was the victim of a cyber attack against its email system that exploited recently disclosed zero-day vulnerabilities in Microsoft Exchange. On March 2nd, Microsoft has released emergency out-of-band security updates that […]

The post Hackers compromised Microsoft Exchange servers at the EU Banking Regulator EBA appeared first on Security Affairs.

Read More Hackers compromised Microsoft Exchange servers at the EU Banking Regulator EBA

Microsoft updated its Microsoft Safety Scanner (MSERT) tool to detect web shells employed in the recent Exchange Server attacks. Early this month, Microsoft has released emergency out-of-band security updates that address four zero-day issues (CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, and CVE-2021-27065) in all supported Microsoft Exchange versions that are actively exploited in the wild. The IT giant reported that […]

The post Microsoft updated MSERT to detect web shells used in attacks against Microsoft Exchange installs appeared first on Security Affairs.

Read More Microsoft updated MSERT to detect web shells used in attacks against Microsoft Exchange installs

Although the world has adopted remote work for nearly a year now, its long-term viability is still hotly debated. While it cuts down on travel and office space expenses, it also reduces human interaction. So where does the world stand? A recent Insider…

Read More The great divide: business leaders are split on long-term remote working. This is what Spotify, Twitter, Goldman Sachs, and others have announced – Insider

Today’s podcast reports on patching needed for D-Link, Citrix and Cisco devices, data breaches at a Nova Scotia pension plan and a U.S. military insurer and a spoiled F1 announcement 
The post Cyber Security Today, March 8, 2021 – Patching, data breach…

Read More Cyber Security Today, March 8, 2021 – Patching, data breaches and a spoiled racing car announcement

Interesting paper: “Shadow Attacks: Hiding and Replacing Content in Signed PDFs“:

Abstract: Digitally signed PDFs are used in contracts and invoices to guarantee the authenticity and integrity of their content. A user opening a signed PDF expects to see a warning in case of any modification. In 2019, Mladenov et al. revealed various parsing vulnerabilities in PDF viewer implementations.They showed attacks that could modify PDF documents without invalidating the signature. As a consequence, affected vendors of PDF viewers implemented countermeasures preventing all attacks…

Read More Hacking Digitally Signed PDF Files

Another day, another global cybersecurity crisis, Seagate’s latest product roadmap teases a 100TB hard disc drive arriving by 2030, and a story about a legally blind man’s lawsuit against Dell sparks a discussion about website accessibility.
The post H…

Read More Hashtag Trending, March 8, 2021 – Another global cybersecurity crisis; 100TB hard drives; Digital accessibility

Organisations have had to overcome countless challenges during the pandemic, but one that has continued to cause headaches is IT security for home workers. A remote workforce comes with myriad dangers, with employees relying on their home networks – and sometimes their own devices – and without the assurance of a member of your IT team on hand if anything goes wrong. But unlike many COVID-19 risks, these issues won’t go away when life eventually goes back to normal. Home working will remain prominent even when employees have the choice to return to the office, with a Gartner survey finding

The post The cyber security risks of working from home appeared first on IT Governance UK Blog.

Read More The cyber security risks of working from home

The presentation of Williams’s new Formula One car was ruined by hackers that forced the team to abandon the launch through an augmented reality app. The Williams team presented its new Formula One car on Friday, but hackers partially ruined the launch by hacking an “augmented reality” app that was designed to show the new […]

The post The launch of Williams new FW43B car ruined by hackers appeared first on Security Affairs.

Read More The launch of Williams new FW43B car ruined by hackers