Cybersecurity Weekly: FBI warns about fake job postings, CISA adds to vulnerability list and the zero-trust timer for federal agencies.
Phishing campaigns attempt to steal job seekers’ money, CISA adds more flaws to the vulnerability catalog and how federal agencies are preparing to implement zero-trust. All this, and more, in this week’s edition of Cybersecurity Weekly.
1. FBI warns of fake job postings used to steal money, personal info
Scammers are trying to steal job seekers' money and personal information through phishing campaigns using fake advertisements posted on recruitment platforms.
2. CISA adds 8 vulnerabilities to list of actively exploited bugs
The US Cybersecurity & Infrastructure Security Agency (CISA) has added eight more flaws to its catalog of exploited vulnerabilities that are known to be used in attacks.
3. The zero-trust timer is on for federal agencies — how ready are they?
According to a survey also released last week, technology and security leaders tasked with the monumental push are hopeful about their agency's ability to implement zero-trust — but they believe that the OMB is pushing them to move too fast with its set of deadlines.
4. Phishing kits that bypass MFA protection are growing in popularity
The increased use of multi-factor authentication (MFA) has pushed developers of phishing kits to come up with ways to bypass that added account protection measure.
5. Salary transparency in cybersecurity: You get paid *how* much?
The relationship between pay and job satisfaction has always been a complex one. While some studies note a pretty direct link between high pay and high job satisfaction, others find only limited positive effects, if any.