In this article about the SAP cyberattack that is currently underway and actively exploiting known security vulnerabilities, Futurum’s Shelly Kramer provides details on the attack, those most at risk, and provides guidance for CISOs and their teams (and business leaders) to protect their organizations right now from these active cyberattacks on mission-critical SAP applications.
User Security Goes Duo Passwordless at Cisco Live 2021
At Cisco Live 2021, Duo, a recent acquisition of Cisco, announced its new passwordless capabilities to meet increasing security demands.
Bipartisan Lawmakers Work Toward Disclosure Bill for Cybersecurity Breaches
As a result of recent cybersecurity breaches, a group of bipartisan lawmakers has been announced. Rep. Michael McCaul (R-Texas) and Sen. Jim Langevin (D-R.I.) are working on legislation that will require companies to notify the federal government in the event of a security breach. Futurum’s Shelly Kramer explores the need for the bill, especially in light of the SolarWinds and Microsoft Exchange Server hacks, the extent of the damage from which will remain unknown for some time. This proposed legislation makes sense — hopefully, this time around it will make it into law.
More Security Woes for Microsoft’s Exchange Servers as Threat Actors Get Busy — Patching is Urgent
Microsoft’s security woes as it relates to the Exchange Server hack and other, subsequent hacking campaigns that have been launched make it a tough time and what I’m sure are a lot of sleepless nights for both the company, as well as CISOs and their security teams the world over. Futurum’s Shelly Kramer takes a look at where we are now, the new threats that are appearing and multiplying at a rapid pace, and rumors of a potential insider leak that may have been malicious and/or part of a separate security breach.
Microsoft Exchange Server Attack Highlights an Issue With On-Prem Software
Microsoft has confirmed a significant security breach of its Exchange email servers and the theft of private emails from businesses, organizations, and government agencies around the world. Futurum’s Fred McClimans breaks down the timeline and what we know so far, and also discusses the behavior issue organizations face regarding on-premises systems.
Apple M1 Vulnerability Opens Debate On Homegrown Silicon Risk
Apple M1 vulnerability “Silver Sparrow” has opened discussions as to the M1 and Apple’s security risks as it moves to homegrown chips.
Data Privacy: Apple Agrees to Delay Enforcement of iOS 14’s New IDFA Opt-in Rules to 2021
Apple added that they believe that “technology should protect users’ fundamental right to privacy, and that means giving users tools to understand which apps and websites may be sharing their data with other companies for advertising or advertising measurement purposes, as well as the tools to revoke permission for this tracking.”
Tesla Foiled Ransomware Attempt Includes FBI Involvement
Tesla joins forces with FBI to thwart an attempted ransomware attack that involved an outsider trying to bribe a company employee with $1 million.
REvil Ransomware Breach Targets Jack Daniel’s Parent Brown-Forman — Steals 1 TB of Data
The REvil ransomware cyber gang claims to have attacked Brown-Forman, the owner of Jack Daniel’s and other popular liquor brands. The sophisticated ransomware gang claims to be holding 1TB of Brown-Forman corporate data for ransom, including employee information, pledging to leak the data in batches if the company does not respond to its demands. Brown-Forman has released few details about the attack, and claims “There are no active negotiations.”
Twitter Hacker’s Virtual Court Hearing Gets Zoombombed
The Twitter hacker’s virtual court hearing was zoombombed proving that in the era of virtual communication, simple administrative settings are the key to mitigating intruders.
