In today’s cybersecurity news… Hackers exploiting Microsoft Defender SmartScreen bug Researchers at Fortinet FortiGuard Labs have observed a new campaign that exploits an Internet Shortcut Files Security Feature Bypass vulnerability […] The post Cybersecurity News: Microsoft Defender exploited, assassin’s encryption frustration, NK elite hackers appeared first on CISO Series ..read more

Is cybersecurity a communication problem at its core? If communication is so critical in cybersecurity, why do we keep seeing so many failures?  Check out this post for the discussion that is the basis of our conversation on this week’s episode co-hosted by me, David Spark (@dspark), the producer of CISO Series, and Geoff Belknap (@geoffbelknap). Joining us is Jim Bowie, CISO, Tampa General Hospital. Got feedback? Join the conversation on LinkedIn. Huge thanks to our sponsor, SeeMetrics SeeMetrics automates cybersecurity metrics programs, continuously measuring and helping prioritize ri ..read more

In today’s cybersecurity news… CrowdStrike dishes details  CrowdStrike published its Preliminary Post Incident Review from its massive incident last week. The company detailed its InterProcessCommunication Template type used in novel attack detection, which was first introduced in February and passed testing on March 5th. Since then, it has introduced two more of these templates in April without issue. On July 19th it introduced two more templates with one containing “problematic content data” that went into production due to “a bug in the Content Validator” that assumed the template bac ..read more

DirectDefense recently released a threat report, offering insights on managed services, threat hunting, and customer requirements. But intelligence only goes so far, organizations can best benefit from tailored alerts based on their needs, argues Jim Broome, president and CTO, DirectDefense. The key to this is building strong partnerships with clients through collaborative and customized security strategies, offering a blend of proactive and responsive measures. Huge thanks to our sponsor, DirectDefense Discover the latest trends in cybersecurity with DirectDefense’s 2023 Security Operations T ..read more

In today’s cybersecurity news… Google’s $23 billion plan to buy Wiz falls apart Last week, it appeared Google was poised to snap up cybersecurity start-up for $23 billion, in what would have been its largest acquisition ever. On Monday night, however, Wiz informed its employees that the deal was off and that the company would instead pursue a public listing on a stock exchange. Chief executive, Assaf Rappaport, said he was flattered by the offers the company received but plans to pursue its previously stated goal of generating $1 billion in recurring revenue ahead of an initial public offerin ..read more

As a principle, zero trust can be taken for granted as a best practice. But the reality is that many aspects of IT infrastructure, from legacy systems to IoT, were architecturally never designed with zero trust in mind. So how do you manage creating a zero-trust environment where numerous endpoints don’t allow for it?  This week’s episode is hosted by me, David Spark (@dspark), producer of CISO Series and Mike Johnson, CISO, Rivian. Joining us is our sponsored guest, Danny Jenkins, CEO, ThreatLocker. Huge thanks to our sponsor, ThreatLocker ThreatLocker® is a global leader in Zero Trust ..read more

CrowdStrike says “significant number” back up and running CrowdStrike reports that of the estimated 8.5 million Window’s devices impacted last Friday, “a significant number” are back in operation. In case you went off to a deserted island over the last 72 hours, CrowdStrike says a defective software update was to blame for critical outages affecting airlines, hospital systems, and other infrastructure nationwide. In a blog post, CrowdStrike released a new technique they claim will accelerate remediation efforts. The effects of the outage are still being felt; on Monday, 800 flights were cance ..read more

We’re going to Seattle! It’ll be our first time ever producing a live recording of CISO Series Podcast in that beautiful city. We’ll be the closing entertainment on the first day of the National Cybersecurity Alliance’s Convene conference happening August 21-22nd, 2024 at the Rosehill Community Center in Mukilteo, WA, just outside of Seattle. Convene is a conference all about security awareness designed for security awareness professionals. And I believe this will be our fifth appearance at one of their events! Joining me on stage for our recording will be Nicole Ford, svp and CISO for Nordstr ..read more

In today’s cybersecurity news… Microsoft confirms CrowdStrike update also hit cloud Windows PCs The faulty CrowdStrike update that continues to reverberate around the world also resulted in a number of Windows 365 Cloud PCs getting stuck in reboot loops, rendering them unusable. The standard fix suggested by Microsoft for rebooting Windows devices into Safe Mode or the Recovery Environment and manually removing the problematic kernel driver, does not apply to Windows 365 Cloud PCs being virtual machines running in the cloud. Instead, Microsoft recommends restarting the affected VMs as many as ..read more

In today’s cybersecurity news… Major worldwide outage hits Windows A worldwide blue screen of death is affecting many Microsoft based activities and organizations this morning, including airlines, banks, and healthcare facilities. The outage appears to be caused by a recent CrowdStrike Falcon sensor update, but other sources point to an unrelated cloud service outage. This is a developing story.(SecurityWeek) FIN7 sells security evasion tool to others via darknet The customized tool, called AvNeutralizer, is used for bypassing threat detection systems, and has been used exclusively for six mo ..read more