Weekly News Roundup: September 1-6, 2019

Posted on by Kacy Zurkus

It’s been a short work week for most companies in the US, but cybercriminals have been working non-stop around the globe. Several municipalities are still struggling to return to business as usual after suffering ransomware attacks. Despite these challenges, defenders remain relentless in the fight against cybercrimes.

Investments are growing in multiple cybersecurity markets and industry and academia continue to collaborate on ways to narrow the skills gap. Here’s a quick look at some interesting cybersecurity headlines from around the world this week:

Sep. 6: RSAC Unplugged in Sydney, Australia is one month away, and the country’s government today announced that it is revisiting its cybersecurity strategy. ZDNet reported that the federal government of Australia is requesting an updated strategy in order to better understand the new and emerging cyber threats Australian businesses and citizens are facing.

Sep. 6: The US grows increasingly concerned about the threat of ransomware and the potential that a cyber attack could disrupt the 2020 national elections.

Sep. 5: Confronting the challenges of enterprise security will require a skilled workforce, which is why educating young adults today is critical to the security of tomorrow. Toward that end, Arizona State University announced that it is one of “the first of a small number of universities to offer the RSAC Scholars program to its students.”

Sep. 5. Though many organizations have made efforts to improve their security awareness and training programs, the human element remains a problem. The Irish Examiner reported that basic passwords are still being used despite warnings that weak passwords create enormous cybersecurity risks.

Sep. 4: The cybersecurity market in Africa and the Middle East is expected to grow more than 15.62% by 2025, which would catapult the 2016 market value of $18.02 billion to a projected market value of more than $66 billion.  

Sep. 4: Students enrolled in the largest school district in Orange County, New York got an extra day of summer after a hacker attempted to attack the computer systems of the Monroe-Woodbury School District. Because of the school system’s investment in cybersecurity solutions, though, the attack was foiled when the security monitoring service alerted officials to shut down the network before being compromise, CBS New York’s local news reported.

Sep. 4: Advancements in technology continue to challenge the indelible lines between innovation and invasion, as Google learned this week. According to AP, Google owned YouTube will pay a steep fine of $170 million for violating children’s privacy.

Sep. 3: Cyber Discovery, an online cybersecurity training program for teens provided by the SANS Institute, again launched in the UK as part of its National Cyber Security Strategy.

Sep. 3: Cyber attacks continue to plague international brands across all industries, but so do misconfigurations as was the case for cosmetic giant Yves Rocher, which warned of a massive data leak that exposed the personal data of millions of customers.

Sep. 2: Social media giant, Twitter, made headlines after hackers compromised the account of the company’s CEO, Jack Dorsey. SC Magazine reported, ““The phone number associated with the account was compromised due to a security oversight by the mobile provider,” Twitter tweeted on Friday. Twitter tweeted Friday. “This allowed an unauthorized person to compose and send tweets via text message from the phone number. That issue is now resolved.””

Sep. 1: With the increasing number of organizations falling victim to ransomware attacks, experts warn government agencies not to pay the ransom. Because the majority of attacks are the result of, “open ports, phishing emails and software vulnerabilities,” Daniel Castro, contributing writer at GovTech advised, “Properly limiting system and network access, securing accounts with multi-factor authentication, training employees on phishing attacks, and keeping systems updated with the latest patches are the best ways to keep systems secure.”

Kacy Zurkus

Senior Content Manager, RSA Conference

Blogs posted to the RSAConference.com website are intended for educational purposes only and do not replace independent professional judgment. Statements of fact and opinions expressed are those of the blog author individually and, unless expressly stated to the contrary, are not the opinion or position of RSA Conference™, or any other co-sponsors. RSA Conference does not endorse or approve, and assumes no responsibility for, the content, accuracy or completeness of the information presented in this blog.

Share With Your Community

Related Blogs