Hello and welcome to TSD, your weekly blog post with top of mind security issues. TSD began as an internal newsletter that our Security Lead, Daniel Tobin, would circulate to the team each Tuesday. It proved to be a great resource for all of us so we thought, why not share it with all of you? Our hope is that it helps make you just a bit more secure.
Check back here every Tuesday for more TSD or sign up below to stay in the loop!
Please reach out to us directly, via security@cyral.com or on Twitter at @dant24 if you have any questions, concerns, tips or anything else!
- Ransomware hit a pipeline provider which then made the move to shutdown delivery for much of the East Coast of the US. The group identified is called DarkSide that runs a ransomware-as-a-service. Read more at NPR. At this point they have actually put out a press release saying they will vet attacks going forward via BleepingComputer. You can read even more about DarkSide at KrebsOnSecurity. And as always Kim Zetter breaks down the whole thing. Ransomware continues to be a scourge when so much easy money can be made.
- KrebsOnSecurity has a new article out on how phishers are developing Microsoft apps that interact with Microsoft Office 365. The apps provide “persistent, password-free access to any of the user’s emails and files, both of which are then plundered to launch malware and phishing scams against others.”
- Google has decided to make 2FA the default going forward for all users via ArsTechnica
- Twilio and Mozilla are the latest to announce that they have been affected by the CodeCov supply chain attack via BleepingComputer
- Because some people are still fighting the 2020 election, an “audit” of ballots is happening in Arizona by a firm that doesn’t seem to have any experience in auditing ballots. Read more about Cyber Ninjas, UV Lights, bamboo fibers and more from Kim Zetter.
Owl fun and facts:
“For UFO Hunters, the Owls Really Aren’t What They Seem. Ominous owl sightings have led some paranormal enthusiasts to link the birds with alien abductions and other unexplained phenomena.” Motherboard’s UFO series has just covered the intersection between UFOs, owls, aliens and Twin Peaks. Read more about “missing time”, the Oz factor and owls abundance of mythic qualities throughout history in Motherboard.
A Shout Out:
We’re big fans of Security as Code so we are super excited for Shuffle, an open source Security Orchestration, Automation and Response (SOAR) platform.
“Shuffle is an Open Source interpretation of SOAR. It aims to bring all the capabilities necessary to transfer data throughout an enterprise with plug-and-play Apps, making automation approachable for everyone. It should remove the need for a coder on the team (I still suggest having at least one..), empowering everyone by being able to deploy new, complicated (or simple) workflows in minutes rather than hours or days.”
Read more about Shuffle on their blog or download on GitHub today!
That’s owl for now!
