Weekly #cybersecurity digest

Greetings <<First Name>>! This newsletter brings to your inbox every Friday:
🗞️ this week's most important cyber security news, 📅 next week's upcoming webinar trainings and 🛡️ most recent Cyberday development.

Published 10.3.2023 • Read all @ Cyberday.ai

#WeStandWithUkraine 🇺🇦

WEEK'S MOST IMPORTANT CYBER SECURITY NEWS

Fortinet warns of new critical unauthenticated RCE vulnerability

"Critical" buffer underflow #vulnerability (CVSS 9.3) impacting FortiOS and FortiProxy disclosed. Allows unauthenticated attacker to execute arbitrary code or perform DoS on vulnerable devices. Updates and workarounds in article >>

10.3. 02:59 · https://www.bleepingcomputer.com/news/security/fortinet-warns-of-new-critical-unauthenticated-rce-vulnerability/

Ransomware review: March 2023

Recent #ransomware numbers: ☢️ LockBit alone leaked data of 126 victim organizations on its leak site during February 2023 🏭 Services, logistics and tech top industries 🦹 Medusa a new active gang

10.3. 02:54 · https://www.malwarebytes.com/blog/threat-intelligence/2023/03/ransomware-review-march-2023

Fifth of Government Workers Don't Care if Employer is Hacked

Survey 800 public sector workers found "not my job” -attitude exposing governments to risk 👤 34% of workers recognize their actions impact organization’s security ⚠️ 21% said they don’t care if organization is hacked #cybersecurity

10.3. 11:24 · https://www.infosecurity-magazine.com/news/fifth-government-workers-dont-care/

GitHub begins 2FA rollout for code contributors

Developer accounts are popular targets for #phishing and account takeover. Protecting them is a critical step toward securing the software supply chain. 🔑 GitHub developers and admings now have 45 days to configure 2FA on their accounts.

10.3. 10:54 · https://www.csoonline.com/article/3690329/github-begins-2fa-rollout-for-code-contributors.html

The Pain of Double Extortion Ransomware

⚠️ Double extortion #ransomware means stealing & encrypting victim's data, enabling demanding two (or more) separate ransom payments. 71% say double extortion tactics have increased 65% agree these make tougher to refuse ransom demands

10.3. 10:44 · https://www.cpomagazine.com/cyber-security/the-pain-of-double-extortion-ransomware/

NEXT WEEK'S CYBER SECURITY WEBINARS

Admin training (part 5/5): Operating and improving an ISMS and reporting compliance

We will present ways for successfully operating and continuously improving your ISMS.

Starts on Wed 15.3. at 2PM (EET) · duration 30 min

ISO 27001 (part 5/5): Certification achieved - what next?

We will present ways for successfully operating and continuously improving your ISMS.

Starts on Wed 15.3. at 3PM (EET) · duration 45 min

ISO 27001 (part 1/5): Intro to standard and Cyberday ISMS

We will go through the basics of Cyberday and how ISO 27001 standard can support systematic information security management. We will also cover the 2022 update to the standard.

Starts on Wed 22.3. at 3PM (EET) · duration 45 min

NEWS FROM CYBERDAY DEVELOPMENT TEAM

new feature

All content @ cyberday.ai

Open Cyberday blog