The Ad, Now Deleted, Lured Users to a Phishing Website to Harvest Credentials
Chinese security researcher Zhi has discovered a malware targeting Mac users. The malware, spread via a paid advertisement on search engine Baidu, is intended to harvest user credentials, he says. The advertisement has now been taken down.

https://www.inforisktoday.co.uk/researcher-finds-malware-targeting-mac-users-via-baidu-ad-a-17616

ACSC: Vulnerability in Password Management Platform Had RCE Capability
The Australian Cyber Security Center has issued a critical vulnerability alert in a Zoho Corp. password management service that could enable a threat actor to take control of the targeted host. The company has issued a security patch.

https://www.inforisktoday.co.uk/australia-warns-critical-vulnerability-in-zoho-service-a-17617

CyberEdBoard Executive Member Maria Filomena Gibe Speaks on Panel at ISMG Virtual Cybersecurity Summit Asia: Financial Services
CyberEdBoard member Maria Filomena Gibe speaks on a panel at ISMG Virtual Cybersecurity Summit Asia: Financial Services. The panel discusses: • How “zero trust” has made security a business enabler; • Building a multifactor authentication model based on zero trust; • Building a zero trust framework aligned with people, process and platforms.

https://www.inforisktoday.co.uk/business-resilience-through-zero-trust-a-17603

Jerome Powell Says Discussion Paper Forthcoming as Fed Weighs CBDC
The U.S. Federal Reserve said Wednesday it is continuing to evaluate the creation of a central bank digital currency, or CBDC, and that it intends to publish research on the subject shortly, according to Chair Jerome Powell.

https://www.inforisktoday.co.uk/fed-chair-says-central-bank-evaluating-digital-currency-a-17604

CISA’s Jen Easterly and National Cyber Director Chris Inglis Support Updates
As the Senate Homeland Security Committee considers new cyber rules and regulations for U.S. critical infrastructure, lawmakers heard testimony from CISA’s Jen Easterly and National Cyber Director Chris Inglis on Thursday in support of these measures, which include updates to FISMA.

https://www.inforisktoday.co.uk/senators-debate-cyber-rules-for-us-critical-infrastructure-a-17605

Advisory Urges Multifactor Authentication, Network Segmentation, Patching and More
The pace of Conti ransomware attacks has been increasing, with more than 400 organizations globally having fallen victim, warns a joint cybersecurity advisory from the U.S. Cybersecurity and Infrastructure Security Agency, FBI and National Security Agency, which details essential defenses.

https://www.inforisktoday.co.uk/conti-ransomware-attacks-surging-us-government-warns-a-17599

CyberEdBoard Executive Member, Charmaine Valmonte, guest speaks at ISMG Virtual Cybersecurity Summit Asia: Financial Services
Volmonte is VP, IT security and IT infrastructure, Aboitiz Group of Companies. She has more than 30 years of experience in the U.S. military and the private sector. Experienced in building cyber risk and IT security programs with highly effective teams focused on reducing the risks of security breaches, minimizing disruptions to preserve brand reputation and build client confidence.

https://www.inforisktoday.co.uk/work-from-everywhere-securely-a-17601

CyberEdBoard Executive Member, Maria Filomena Gibe, guest speaks on panel at ISMG Virtual Cybersecurity Summit Asia: Financial Services
The panel discusses: • How ‘zero trust’ has made security as a business enabler • Building a multi-factor authentication model based on ‘zero trust’ • Building ‘zero trust’ framework aligned with people, process and platforms

https://www.inforisktoday.co.uk/business-resilience-through-zero-trust-navigating-through-people-process-a-17603

CyberEdBoard Executive Member, Dr. Deepak Kumar, guest speaks at the keynote session at ISMG Virtual Cybersecurity Summit Asia: Financial Services
The session addresses how the banking and financial services organizations can take steps to invest for operational speed, drive value from new investments, enhance their training and cybersecurity collaboration, and work to sustain what they have.

https://www.inforisktoday.co.uk/establishing-cybersecurity-in-era-resilience-a-17600

Researchers Say BulletProofLink Subscription Offers Many Services
Microsoft Security on Tuesday issued a detailed report on a massive phishing-as-a-service operation named BulletProofLink that offered as a subscription all the tools needed to conduct a campaign. The gang remains operational.

https://www.inforisktoday.co.uk/microsoft-analyzes-phishing-as-a-service-operation-a-17594

Russia’s Remote Electronic Voting System Fends Off 19 DDoS Attacks
Russian cybersecurity firm Rostelecom-Solar reports that it prevented what it believes is the Mēris botnet from an attempted takeover of 45,000 new devices. The company’s president says it also stopped 19 distributed denial-of-service attacks targeting Russia’s remote electronic voting system.

https://www.inforisktoday.co.uk/russians-prevent-meris-botnet-from-hijacking-45000-devices-a-17595

DHS’ Alejandro Mayorkas, FBI’s Christopher Wray Discuss Ransomware Surge
U.S. FBI and Department of Homeland Security leaders fielded several cybersecurity questions from House lawmakers Wednesday, particularly around the surge in ransomware attacks, diplomatic efforts to curb ransomware’s financial model, and the nation-states that harbor cybercriminals.

https://www.inforisktoday.co.uk/us-dhs-fbi-face-ransomware-questions-from-congress-a-17596

Researcher: Decade-Old Exposure Is a Privacy Concern
Researcher Bob Diachenko has discovered an unsecured database containing personal information of 106 million foreign nationals who have visited Thailand in the past decade. The 200GB database, which has now been secured, has not been accessed by unauthorized personnel, Thai authorities say.

https://www.inforisktoday.co.uk/researcher-finds-exposed-data-106-million-thai-visitors-a-17591

Cisco Talos: Turla Deploying Malware Against US, German and Afghan Victims
A Russian-linked group known as Turla has been deploying a secondary backdoor against numerous targets to maintain persistence within compromised devices even after the primary malware has been discovered and removed, Cisco Talos report. Victims include U.S., German and Afghan organizations.

https://www.inforisktoday.co.uk/russian-linked-group-using-secondary-backdoor-against-targets-a-17592

Ransomware Gang’s Second Attack in 3 Days Affects 6,000 Broadcasters
Marketron Broadcast Solutions was hit over the weekend by a ransomware attack launched by the BlackMatter gang, and the attack has taken down a number of the marketing firm’s products. Marketron is currently in talks with its attacker.

https://www.inforisktoday.co.uk/blackmatter-knocks-marketron-off-air-a-17588

Researchers: Vulnerability Unmasks Users’ VPNs; Virgin Media: Risk Is ‘Very Low’
Researchers have found a zero-day vulnerability in U.K. broadband and cable TV provider Virgin Media’s Super Hub 3 routers that enables an attacker to unmask IP addresses of VPN users. But A Virgin Media spokesperson says the risk of that happening is “very low.”

https://www.inforisktoday.co.uk/zero-day-vulnerability-found-in-uk-virgin-media-routers-a-17589

‘Suex’ Accused of Laundering Tens of Millions of Dollars for Cybercriminals
The U.S. Department of the Treasury has blacklisted Russia-based cryptocurrency exchange Suex for allegedly laundering tens of millions of dollars for ransomware operators, scammers and darknet markets. It is the first such designation for a virtual currency exchange.

https://www.inforisktoday.co.uk/us-treasury-blacklists-russia-based-crypto-exchange-a-17590

Christopher Wray Asked About Report That Bureau Held Key for 3 Weeks
FBI Director Christopher Wray faced questions during a Senate hearing Tuesday concerning a published report that the bureau for almost three weeks withheld a decryption key that agents obtained from the ransomware gang that targeted software firm Kaseya.

https://www.inforisktoday.co.uk/fbi-director-questioned-over-kaseya-decryption-key-a-17584

Put Your Automotive Code to the Test

With automotive standard ISO 21434 just around the corner, this tutorial focuses on how it will form a key protective component against the cyber threats facing automation software developers.

https://www.inforisktoday.co.uk/how-to-keep-cybercrimes-foot-off-pedal-isosae-21434-a-17585

One Incident Involved Foiled Attempt at Invoice and Wire Transfer Fraud
Two eye care entities are among the latest healthcare provider organizations recently reporting hacking breaches each affecting tens of thousands of individuals. One of the incidents involved a foiled wire transfer fraud attempt.

https://www.inforisktoday.co.uk/hacking-incidents-lead-to-2-big-eye-care-provider-breaches-a-17587