The late weekly, what happened this week ?

It happens, I'm late, loaded with meetings and calls today I only reach this by the end of the day, which makes the worst ever time to post on linkedin, seriously, it's the weekend, weather is nice, who cares about the cyber security news of the week seriously ! :D

Ok, I'm doing it anyways, because I do what I want and the algorithm can eat it :P This week in 58 bullets :

1 - I did like their leak site to be honest, it was nicely done, but : Avaddon ransomware operation shut down and release decryption keys ! on less.

2 - Cisco critical bugs were found, it's not a news in the way that it happens every other week : Unpatched Bugs Found Lurking in Provisioning Platform Used with Cisco UC

3 - Enough time above the laws : Federal antitrust legislation puts Amazon, Big Tech on notice and on target , it's a matter of stopping the data abuses, and more. Time to regulate :) ... too young to remember ?

4 - The clowd leaked again - Baby Clothes Giant Carter’s Leaks 410K Customer Records, when you cloud, please, put the proper protections in place, you are handling real people data, messing with real people's identity. Please clowders, try to take it seriously. DLP anyone ? best practices ? Security audit ?

5 - Don't worry, nuclear weapons contractor got hacked - REvil Hits US Nuclear Weapons Contractor: Report - Seriously people, before connecting some more IOT (internet of threat) online, could we review the sensitive stuffs and at least achieve basic security ? More about it here as well

6 - And I can't believe we connect cars to internet while we can't even keep the customer's data secured - Audi, Volkswagen data breach affects 3.3 million customers

7 - Do your taxes in the cloud they said !! well I refused and ran the app on a local machine - Intuit notifies customers of hacked TurboTax accounts

8 - Patch management is critical, especially for internet facing devices - Ransomware attackers are leveraging old SonicWall SRA flaw (CVE-2019-7481)

9 - Nation state actors and transnational criminal organizations are after your data, are you ready ? Chinese Hackers Believed to be Behind Second Cyberattack on Air India , I wonder how confident is a statement calling "believed to be behind", I'd rate it 5/10...

10 - Interpol does a great job, I had a chance to be on a panel this week with some Interpol representative and other law enforcement, what a mission and so many challenges : Interpol shuts down thousands of fake online pharmacies (all/most of my past speaking engagements are listed here)

11 - Protecting your assets and remote access nowadays should move toward Zero Trust, here is a good reading : Get Started on Zero Trust

12 - Go to cloud they said (sounds like an insult a bit ;) ), so criminals listened, they use the cloud : Microsoft: SEO poisoning used to backdoor targets with malware

13 - Using Google workspace ? Encryption is now available for your files, and somehow have better privacy - Google Workspace Now Offers Client-side Encryption For Drive and Docs (render your leaked cloud data unusable)

14 - Always extremely challenging to manage contractors remote access to avoid too much exposure : Contractors and Freelancers vs. Access Privileges

15 - French ISP customer database got stolen - Hacker Broke Into French ISP ‘Free’ and Is Now Selling Database Access, so you realize that dark web monitoring is not an option for you and your business, you never know where your data leak (aside of the obvious clowd - I know it drives Chris crazy when I say this, but a lot like it too :) )

16 - Common Vlad, get the kids stop messing with these critical assets... please ! G7 leaders ask Russia to hunt down ransomware gangs within its borders

17 - When was the last time you checked for an update in your router ? Moobot Milks Tenda Router Bugs for Propagation

18 - Have you disable legacy protocols ? The ones that do not support modern authentication ? Microsoft: Scammers bypass Office 365 MFA in BEC attacks

19 - HIPAA, seriously, patients should not have to worry about their very personal medical data, honestly, this is just nasty and disgusting - Oklahoma cancer center's EHR server breached by hackers, exposes 8,000 patients' data

20 - There is a worm in the apple, patch it ! Apple Hurries Patches for Safari Bugs Under Active Attack

21 - Anything you put on social media is not private, better handling it this way, so you won't face the betrayal, social media, clowd, same stuff : Instagram? ?Bug Allowed Anyone to View Private Accounts Without Following Them

22 - Cloud costs are out of control, and yet it leask anyways - Cloud computing costs skyrocketing as businesses support a remote workforce

23 - Transnational criminal organizations will try to break in your systems and cloud. Poor hygiene will quickly get you hacked - BackdoorDiplomacy APT Group Attacks Telecommunications & Organizations Worldwide

24 - You have NO IDEA who access your data in the cloud, ZERO - Microsoft’s Brad Smith: secret subpoenas, gag orders should be the exception not the rule

25 - Teams is NOT a safe place for sensitive data (neither communication as voice is NOT ENCRYTPED) - Teams : Attackers could have used the bug to get read/write privileges for a victim user’s email, Teams chats, OneDrive, Sharepoint and loads of other services

26 - Marketing in cloud distribute data, after all, the leaky power of the cloud is there : Cyber Analytics Database Exposed 5 Billion Records Online, learn from these cloud implementation failures, and make sure you don't add your name to the skyrocketing pile !

27 - Where do you stand with patch management ? Full-circle Patching: The Impact of Post-Patching Application Testing on Business Continuity and Security

28 - More ransomware forks ahead sadly, despite the take down of 2 big actors : Paradise Ransomware source code released on a hacking forum

29 - Would you have the same detection capabilities ? Largest US propane distributor discloses '8-second' data breach - If you don't, reach out, we can deploy proper XDR for your organization in few hours, I'll put you in touch, managed extended detection and response, SOC backed, managed ;)

30 - One of my favourite topic, the leaky cloud, you can do better - TeamTNT Strikes Again: A Wake-Up Call to Start Securing Cloud Entitlements

31 - IoT, the Internet Of Threats strikes again : Millions of Connected Cameras Open to Eavesdropping, look for the webiste "insecam" as an example

32 - It's kind of obvious, but so as you know : 'That horse has left the barn': Secret Service official says ransom payments have fueled hacking sprees

33 - Take some time to disconnect from the fake world (technology and cloud) - Fake online reviews linked to $152 Billions in global purchase

34 - All the AVADDON ransomware victims that did hide the data leak may now be sued by regulator as the list of victims came out - Avaddon ransomware's exit sheds light on victim landscape

35 - Cyber terrorism is now a thing - Nato: Cyber attacks 'as serious as any other attacks' to allies

36 - Sorry Chris, but the cloud leaked again, it's not FUD, it FACT : Alibaba suffers billion-item data leak of usernames and mobile numbers (people, have credit monitoring, dark web monitoring, enable MFA everywhere, and keep in mind your phone number is not a safe option for MFA)

37 - Despite latest takedown of credentials marketplace, this is still a very organized market - Researchers: Booming Cyber-Underground Market for Initial-Access Brokers

38 - Patch you bike, and no, it's not a flat tire ! Peloton Bike+ Bug Gives Hackers Complete Control

39 - iPATCH my iDEVICES - Apple fixes actively exploited vulnerabilities affecting older iDevices

40 - Due diligence is not optional, you should always question your providers - The MSP and CSP: a Hacker’s Gateway to Clients

41 - CLOP arrest ? We'll see if law enforcement kept it up to locate resources or if this is an incomplete arrest - Ukraine Police Arrest Cyber Criminals Behind Clop Ransomware Attacks

42 - Title says it all - 7 Things to Know About Biden’s Cybersecurity Executive Order

43 - Do you have proper defense in place ? Would you do better than this hospital ? Humber River Hospital’ Shuts Down Essential Services Due to Ransomware Attack

44 - Compliance is not security, yet it helps bridge the gaps - Mitigating Cyber Risks and Managing Compliance in Financial Services

45 - Is your SIP / VOIP patched ? XSS Vulnerability In SIP Protocol Risks RCE Attacks On VoIP Software

46 - If you did not order it, it might be a trap ! Scammers mail fake Ledger devices to steal your cryptocurrency

47 - 3 years long leak, would you have detected it before ? Wegmans Notifies Customers of Data Security Issue

48 - When the cloud CDN turns into a SPOF and shut you down - Hiccup in Akamai’s DDoS Mitigation Service Triggers Massive String of Outages , do you have an alternative for your services when the cloud CDN goes down ? On the same topic : Cloud outage fallout

49 - The less apps you install, the smaller your attack surface is - A New Spyware is Targeting Telegram and Psiphon VPN Users in Iran

50 - The cloud leaked again, not FUD, just FACT - Unprotected CVS database exposed sensitive customer searches , hopefully you'll do better !

51 - Interesting new way to hide processes for attackers - Researchers Uncover 'Process Ghosting' — A New Malware Evasion Technique

52 - If you encrypt your data in the cloud, but the keys are in the cloud, there is mostly no protection - Are your cryptographic keys truly safe? Root of Trust redefined for the cloud era

53 - With everything cloud nowadays, I was surprised to see that cloud is far from being everything ! Worldwide server market reaching $20.9 billion during 1Q21

54 - Protecting your supply chain ? How to convey cyber risk across the supply chain

55 - A good / fun one, uncommon - Top 12 Star Wars Quotes for Attack Surface Management

56 - Another CISCO patch time week - Cisco Smart Switches Riddled with Severe Security Holes

57 - Second time cyber attack, sadly not securing the whole attack surface will let you sink - Carnival Cruise hit by data breach, warns of data misuse risk, root cause analysis, bridging the gaps, are not optional (I don't mean they did not do it, but you should not avoid these key steps either)

58 - Damn, the intern is at it again ! Move from solarwinds to HBO and now he releases spam ! Someone catch the intern ! common ! - HBO Max blames mistaken "Integration Test" email on an intern

And that will be it ! I did not even put everything, but that's to me, the key stuffs of this week ! Pick and chose your reading ! Enjoy !

Have a good weekend all ! Thanks for reading and following me, honoured to have so many people around ! ;)

Note that now that I've typed all of these, weather is cloudy, I feel threatened after all I said against the cloud in here :P