Security Weekly News Subscribe

Iranian Code, WordPress Vuln, MFA Fatigue, & Free Crypto! (Scams) – Wrap Up – SWN #188

February 18, 2022

Ukraine accuses Russia of cyber-attack on two banks and its defence

ministry

https://www.theguardian.com/world/2022/feb/16/ukraine-accuses-russia-of-

cyber-attack-on-two-banks-and-its-defence-ministry

Iranian State Broadcaster Clobbered by ‘Clumsy, Buggy’ Code

https://threatpost.com/iranian-state-broadcaster-clumsy-buggy-code/178524/

Phishers Spoof Power BI to Visualize Your Credential Data

https://cofensestaging.wpengine.com/blog/phishers-spoof-power-bi-to-visualize-

your-credential-data?web_view=true

Vulnerability found in WordPress plugin with over 3 million installations

https://www.zdnet.com/article/vulnerability-found-in-wordpress-plugin-with-over-

3-million-installations/?&web_view=true

MFA fatigue attacks: Users tricked into allowing device access due to overload of

push notifications

https://portswigger.net/daily-swig/mfa-fatigue-attacks-users-tricked-into-

allowing-device-access-due-to-overload-of-push-notifications?&web_view=true

FreeCryptoScam - A New Cryptocurrency Scam That Leads to Installation of

Backdoors and Stealers

https://www.zscaler.com/blogs/security-research/freecryptoscam-new-

cryptocurrency-scam-leads-installation-backdoors-and?&web_view=true

Full episode and show notes

Hosts

Doug White

Doug White

Professor at Roger Williams University

https://securedigitallife.com/

Aaran Leyland

Aaran Leyland

Cyber security lead EMEA at Defence

http://restrictedaccessltd.co.uk/

Related

Are We Thinking in the Right Way as CISOs? – Sajan Gautam – CSP #124

May 30, 2023

CISOs want to enable the business. But sometimes we must stand our ground and explain our position with rationale. So, how do we convince other people to act without telling their baby is ugly? Join us, as we discuss having difficult conversations.

Managed services

Optimizing Vendor Relationships: How to Get in Your Partners’ Good Graces – CFH #23

May 30, 2023

Obviously, managed security providers want to optimize their rapport with customers. But don't overlook the importance of fostering a mutually beneficial relationship with your cyber solution vendor partners as well. In this segment, we'll look at how MSSPs can best leverage their vendor agreements to ensure they're receiving top-notch, responsive ...

Managed services

Managed IAM: The Quest for an Evolved Identity Experience – Bill Brenner – CFH #23

May 30, 2023

Today marks the beginning of the Identiverse conference in Las Vegas, where leaders in security gather to discuss advancements in the world of identity and access management. For MSSPs that specialize in managed IAM services, it's important to stay on top of the latest trends, including those revealed in a series of reports and articles that CyberR...