Certainly, I’m not the only one old enough to remember the Brady Bunch, a cultural reference that for many a reader harkens back to “the good ole days.” This week, the song “Time to Change” has been an earworm for me. Indeed, when it’s time to change, we all do have to rearrange who we are and what we are going to be.
We see the world changing around us, which can often foment fear that then results in hackers preying on the uncertainties of the coronavirus to scam end users. That’s one reason—in the peak of tax season—it’s important to bring increased attention to cybersecurity. This time of heightened fears and uncertainties makes human beings all the more vulnerable to nefarious actors.
But, those of you with incident response plans understand the concept of resiliency, adaptability and agility. In dealing with everything from the hiccups of digital transformation to unexpected security incidents because of misconfigurations and major data breaches, security teams have confronted myriad obstacles and learned how to adapt. This week has been no different.
Here’s a look at some of the bumps in the road that the industry has been dealing with this week.
Mar. 13: Institutions of higher learning throughout Europe are moving toward collaboration in an attempt to improve their overall cybersecurity strategies.
Mar. 12: Iowa’s Secretary of State reportedly told auditors that “his office will provide $1 million to assist them with cybersecurity resources ahead of the elections.”
Mar. 12: Infosecurity Magazine reported, “An Arizona teen could be sentenced to more than 600 years in prison after allegedly hacking into a computer and stealing thousands of indecent images of children.”
Mar. 12: Kaspersky researchers discovered a cookie-stealing Trojan that was used “to acquire root rights on the victim device, and transfer cookies used by the browser and Facebook app to the cybercriminals’ server.”
Mar. 11: A report released by bipartisan lawmakers found that increased cyber-operations training and improved communications are needed to advance cybersecurity defenses in the US.
Mar. 11: Google announced the winners of last year’s Google Cloud Platform (GCP) VRP Prize. The news was coupled with an additional announcement that the company is “tripling the total amount of the GCP VRP Prize this year. We will pay out a total of $313,337 for the top vulnerability reports in GCP products submitted in 2020.”
Mar. 10: Threatpost reported, “Microsoft tackled 115 bug fixes as part of its March Patch Tuesday update—26 rated critical and 88 rated medium severity. The bugs patched span its product catalog, from Azure DevOps to Windows 10.”
Mar. 9: “The Australian information commissioner on Monday sued Facebook for sharing the personal data of Australians as part of the Cambridge Analytica controversy,” The Hill reported.
Mar. 9: Former CIA computer engineer Joshua Schulte, 31, was arrested on charges of stealing classified documents. Jurors could not agree on whether to convict Schulte on eight counts, “including illegal gathering and transmission of national defense information,” but he was convicted on two counts of “contempt of court and making false statements to the F.B.I.”