Greetings <<First Name>>! This newsletter brings to your inbox every Friday:
🗞️ this week's most important cyber security news, 📅 next week's upcoming webinar trainings and 🛡️ most recent Cyberday development.
"Critical" buffer underflow #vulnerability (CVSS 9.3) impacting FortiOS and FortiProxy disclosed. Allows unauthenticated attacker to execute arbitrary code or perform DoS on vulnerable devices.
Updates and workarounds in article >>
Recent #ransomware numbers:
☢️ LockBit alone leaked data of 126 victim organizations on its leak site during February 2023
🏭 Services, logistics and tech top industries
🦹 Medusa a new active gang
Survey 800 public sector workers found "not my job” -attitude exposing governments to risk
👤 34% of workers recognize their actions impact organization’s security
⚠️ 21% said they don’t care if organization is hacked
#cybersecurity
Developer accounts are popular targets for #phishing and account takeover. Protecting them is a critical step toward securing the software supply chain.
🔑 GitHub developers and admings now have 45 days to configure 2FA on their accounts.
⚠️ Double extortion #ransomware means stealing & encrypting victim's data, enabling demanding two (or more) separate ransom payments.
71% say double extortion tactics have increased
65% agree these make tougher to refuse ransom demands
We will go through the basics of Cyberday and how ISO 27001 standard can support systematic information security management. We will also cover the 2022 update to the standard.
Starts on Wed 22.3. at 3PM (EET) · duration 45 min
We're building a new Community-section to Cyberday, which will enable you to easily ask help from us, collaborate with your peers from similar roles / organizations and get ideas...
You can now create a one-time audit report for the defined audit scope (e.g. selected chapters of ISO 27001 standard or any other framework).This report will help the auditor...
Now you can also disable a user ID in the user management. This works well if, for example, a user in your core team has changed jobs, but there is no replacing person recruited yet...