Weekly cyber - People are good !

While this weekly cyber wrap the key cyber events, news, vulnerabilities of the week, I also want to share something unrelated to the threat landscape (I mean, not within this field).

This week I bought a new trailer, bigger than the old one and went to pick it up. While on the highway going back home, one of the ramps of the trailer felt (lock-bolts holding it shifted / partially unscrewed) and I had to do an emergency stop on the side of the highway.

Everybody knows it's an extremely dangerous place to stop, big trucks and lots of cars passing full speed. But, I had to put back in place that ramp that was scratching on the ground before it broke the trailer, or break and crash in a car following me. 30 sec after being stopped on the side of the highway, picking some cable-ties in the trunk to temporarily hook the ramp in place, one dude with a utility pickup stopped behind me, all orange flashers on, and while I wave my hand to thank him, he nodded showing "go on, I got you".

Just a random person, not road service or so, willing to help, reduce the risk, while putting himself as a shield too. It was raining, and we didn't even speak. I jumped back in my car, he covered for the insertion on the highway, followed me to check if everything went fine (was driving slower, he could have passed fairly quickly), and he took an exit way before mine.

I thought it was a nice example out of many, most people are not up to bad things. I think all of us will give an hand when we can. We care, I think and hope most people care.

Point is, I see what I do here, on Linkedin, somehow a bit like this guy, who helped, mostly because he could, with what he had and knew, to do good, he cared. His power was kindness, a big pickup and flashers, my power would be kindness, a big amount of followers, in a way, and we try to use this for good. Real good.

Sorry for this extra mile in storytelling, but I think it's good to share some good too.

Back at this week in cyber, as you know, everything I share is to help everybody who reads to learn about these topics, have proper controls in place, or think about some aspects they didn't think about.

1 - Cyber weapons are never wasted or lost. The same way you can NEVER put leaked data back in the box. Criminal Hackers use Conti's leaked ransomware to attack Russian companies

2 - It will now come as a surprise ! Microsoft: Windows Autopatch steals the 'fun' from Patch Tuesdays

3 - The key takeaway here is the fact that you need to work on your posture. How Mature is Your Foundation? Why Your Compliance Tech and Tools May Determine Your Future

4 - A good summary and reminder of the PCI DSS high lever requirements and specs. The 2022 Guide to PCI Compliance Levels.

5 - Never put AWS temporary credentials in the credentials file (or env vars). We need to talk about how AWS credential configuration works.

6 - When the supposedly security device becomes the issue, watchguard patch time ! CISA warns orgs of WatchGuard bug exploited by Russian state hackers

7 - The?#clowd?in action. Don't worry, it will only take 2 weeks to potentially get back online. Atlassian says ongoing outage might last two more weeks (Interesting that Atlassian replied to my second post about it ! Right here to the comment ! I'm that big :P lol, well, joke aside, it's good that they take time to explain and share. Transparency is key )

8 - Great take on how the supposedly cloud security got hacked, and instead of bringing security, it brought a hole and vulnerability in its customer systems. The Okta Breach and Securing SaaS Administration Interfaces.

9 - Build resilient architecture because paying is stupid and finance crime and more pretty nasty groups - Ransom DDoS attacks have dropped to record lows this year - Doing things right actually lower the threats and incidents !

10 - They all thought their iPhone was secure for sure..,... that's one drop in the ocean.EU Officials Reportedly Targeted with Israeli Pegasus Spyware. While NSO Group press US supreme court to become a legal tool !!! Crazy !

11 - What You Need to Know Now on the SEC side - Greater Security Enforcement is Leading to New SEC Fines

12 - This is why you need to get vulnerability assessment of your codebase via code review analysis and code testing - 80% of Software Codebases Contain at Least One Vulnerability

13 - VMware workspace one patch time - VMware Patched Workspace ONE Access Software Bugs

14 - Threat landscape is not shrinking (funny as this goes against big tech views, which means big tech is partially blind too) - New Fodcha DDoS botnet targets over 100 victims every day

15 - Wordpress?plugin elementor patch time

16 - Apache struts patch big time ! Critical Apache Struts RCE vulnerability wasn't fully fixed, patch now

17 - How do you know best practices are in place ? Do you make use of all the available security controls ? Independent security audits are essential for cloud service providers. Here’s why

18 - Do you have a risk register ? Without risk register, risk evaluation, well, what good could your security controls do ? The Great Resignation: Managing Third Party Risks need to be a First Priority

19 - Happening non stop, and this is why advanced security is mandatory. An antivirus is a start, but no longer enough these days ! New ZingoStealer infostealer drops more malware, cryptominers

20 - And we continue to connect ever more things, cars and all, and we can't even protect the existing infrastructure - Feds: APTs Have Tools That Can Take Over Critical Infrastructure

21 - Teach your kids that social media are dangerous too - Instagram beyond pics: Sexual harassers, crypto crooks, ID thieves

22 - The sad truth about modern technology and big tech - The results suggest that consumers feel trapped: sharing personal data is a requirement to use digital services but a majority do not trust organizations to protect their data.

23 - The cloud leaks, after all it's exposed online for any attacker to take a chance, given the attack surface, no wonder why it leaks continuously. GitHub: Attacker breached dozens of orgs using stolen OAuth tokens ! Sorry but LOL ! So #clowd !

24 - The cloud is a joke ! Cloud Cost, Reliability Raise IT Concerns (not me saying it ! )

25 - Must be some kind of hypersonic SMS, they are unstoppable ! T-Mobile customers warned of unblockable SMS phishing attacks

26 - Organizations really have hard time believing there is a huge relation between the first incident and what comes next ! Connections that show the cybercriminal teams are working together signal shifts in their respective tactics and an expansion of opportunities to target victims.

27 - CISCO patch time, it looks like a discovered backdoor or a vulnerability - Cisco vulnerability lets hackers craft their own login credentials

28 - Inspired by cloud, what the interface shows you is an illusion. 'Mute' button in conferencing apps may not actually mute your mic

29 - Connected = killed - JekyllBot:5 Flaws Let Attackers Take Control of Aethon TUG Hospital Robots

30 - How good are you at patching ?! Critical Microsoft RPC runtime bug: No PoC exploit yet, but patch ASAP! (CVE-2022-26809)

31 - Got to love the cloud - Critical VMware Cloud Director Bug Could Let Hackers Takeover Entire Cloud Infrastructure

32 - Fun article, as it takes CMMC as a thing, but CMMC is built on NIST recommendations, therefore, implementing CMMC is mostly applying NIST best practices and showing you did it. 4 Reasons Why Your CISO Wants To Implement A CMMC Framework

33 - When the data is out, it's too late, no ransom or late catch up will fix this - New Industrial Spy stolen data market promoted through cracks, adware

34 - In the cloud, you control NOTHING, you own NOTHING ! Shut up and obey - GitHub suspends accounts of Russian devs at sanctioned companies

35 - Swiss cheese ! Upgrades for Spring Framework Have Stalled - What could possibly go wrong !

Have a great day all, Easter for the ones affected by it :D And have a good rest ! till next time :D