Microsoft data breach, CISA FIDO push and cybersecurity worker shortage | Cybersecurity Weekly
Microsoft continues to make negative headlines for the second month in a row, CISA encourages Fast IDentity Online (FIDO) adoption and the growing cybersecurity worker shortage. Catch all this and more in this week’s edition of Cybersecurity Weekly.
Should you pay the ransom?
1. Microsoft confirms server misconfiguration led to 65,000+ companies’ data leak
This week marks the second month of bad news for Microsoft, who, after seeing cybercriminals compromise its Exchange Servers last month, saw an unintentional endpoint misconfiguration expose the information of thousands of customers. The Windows creator did not reveal the extent of the data leak, but SOCRadar says it affects more than 65,000 firms in 111 countries, with the exposure amounting to 2.4 terabytes of information. The threat intel company claims the information consists of product orders, invoices, partner ecosystem details and signed customer documents, among other sensitive info.
2. CISA tells orgs to go further than MFA, use FIDO authentication
Multi-factor authentication (MFA) has long been a de facto standard for organizations requiring rigid cybersecurity. But CISA director Jen Easterly called on companies and technology vendors to go one step further and include FIDO authentication in their MFA implementation plans. He further said that traditional MFA would become legacy MFA at some point, and businesses are lucky that a group of organizations formed the FIDO Alliance to make authentication simpler and more secure.
3. FBI warns of possible student loan forgiveness scams
The FBI issued an alert warning students of potential debt forgiveness scams. With the applications to have student loans forgiven now open, the agency says cybercriminals may attempt to contact borrowers and offer a gateway to the program. Students have been asked to be careful of unsolicited emails, shady text messages, phone calls and social media posts. Cybercriminals may ask for personal or financial information along with money to cover “processing fees” while acting as reps of government agencies.
4. The cybersecurity industry is short 3.4 million workers — that’s good news for cyber wages
The global cybersecurity workforce is at an all-time high, with an estimated 4.7 million professionals. However, there’s still a massive shortage of 3.4 million personnel in the industry, according to the latest (ISC)2 Cybersecurity Workforce Study. The growing need for cybersecurity talent is expected to be followed by an increase in wages and other benefits. The (ISC)2 also shows that 27% of cybersecurity professionals join the industry for the potential of strong compensation packages and high salaries.
5. Cloud security incidents reported in more than 4 in 5 companies
More than 81% of companies report experiencing a security incident in the cloud over the last year and 45% experienced at least four incidents, according to new research from Venafi. The need for cloud security isn’t expected to slow down. The report also found that companies looking to host their applications on the cloud is expected to rise from 41% to 57% in the next 18 months.
See Infosec IQ in action
In this Series
- Microsoft data breach, CISA FIDO push and cybersecurity worker shortage | Cybersecurity Weekly
- Canada Flipper Zero ban and new RustDoor macOS malware
- AnyDesk hack and iPhone patched kernel flaw
- Tesla Pwn2Own hacks and iOS push alerts abuse
- TeamViewer breach and Atlassian Jira outage
- Moscow ISP revenge hack and Microsoft Sharepoint bug warning
- X verified accounts hack and SpectralBlur macOS malware
- CISA default password alert and SOHO KV-botnet campaign
- New 5G modem flaws and Apple’s data breach report
- Staples cyberattack, Agent Racoon backdoor and other news
- British Library ransomware attack, Windows fingerprint authentication bypass
- Samsung UK data breach and ransomware actor’s SEC complaint
- ICBC ransomware attack and ChatGPT outage
- Boeing Lockbit ransomware attack, Apple’s vulnerability and WhatsApp mods spyware
- Octo Tempest hacking group and new iLeakage attack
- Okta support system breach and Google Ads fake KeePass campaign
- Skype DarkGate malware, Shadow PC breach and AvosLocker ransomware warning
- 23andMe data theft, MGM’s $100M ransomware loss and the Azure VM breach
- Malicious Bing Chat ads and FBI’s dual ransomware warning
- T-Mobile app glitch and fake Booking.com pages
- Airbus data leak, Cisco Webex ad malware and €345 million TikTok fine
- New Apple iMessage exploit and CISA’s Apache RocketMQ warning
- Forever 21 data breach and Android BadBazaar espionage
- Duolingo data leak and the Met Police IT hack
- Discord.io data breach and Ivanti Avalanche vulnerabilities
- UK Electoral Commission hack and Microsoft’s role in China email breach
- Salesforce email zero-day exploit and Microsoft Power Platform criticism
- Airlines disclose pilot data breach and the Microsoft Teams bug
- GravityRAT Android Trojan and new MOVEit Transfer flaw
- University of Manchester hack and Honda API flaws
- MOVEit zero-day exploit and the U.S. iPhone hack accusation
- Daam Android virus and Barracuda zero-day flaw
- TP-Link router exploit and 18-year-old charged with hacking DraftKings accounts
- Discord support hack and Toyota location data leak
- Twitter private tweets bug and Cisco phone router vulnerabilities
- Cisco XSS zero-day flaw and PaperCut vulnerabilities
- 3CX hackers hit critical infrastructure and secondhand routers cause security concerns
- Hyundai data breach and Microsoft’s warning to accountants
- Western Digital cloud breach and the MSI ransomware hack
- TMX loan data breach, Italy bans ChatGPT and WordPress Elementor Pro exploit
- ChatGPT data leak and Gmail message theft by North Korean hackers
- U.S. federal agency hack and the return of FakeCalls Android malware
- Massive AT&T data breach and fake jobs targeting security researchers
- U.S. Marshals service breach and TPM 2.0 security flaws
- Dangerous ChatGPT apps and food giant Dole ransomware attack
- GoDaddy malware installations, record-breaking DDoS attack and the new WhiskerSpy malware
- Reddit’s employees phished, healthcare firms targeted and the new Screenshotter malware
- JD Sports data breached, VMware ESXi servers attacked and the HeadCrab malware
- Yandex source code leaked, 4500+ WordPress sites hacked and the new SwiftSlicer malware
- PayPal accounts breached, Fortinet VPN flaw exploited, and the new Hook malware
- Twitter users’ emails leaked, ChatGPT used to write malware and Slack’s repository breach
- Reduce security events
- Reinforce cyber secure behaviors
- Strengthen cybersecurity culture at your organization
