Protect your personal and business data by taking LAPSUS$ teen hackers seriously.

Views expressed in this cybersecurity-cybercrime update are those of the reporters and correspondents.

Accessed on 10 April 2022, 2353 UTC.

Content supplied by “CSOonline.com.”

Source:  https://www.csoonline.com/

Please click link or scroll down to read your selections.

Take LAPSUS$ teens seriously

New cryptomining malware targets AWS Lambda

CrowdStrike and Mandiant form strategic partnership to protect organizations against cyber …

MORE TOP STORIES
  • binary code spanning a world map
    How GDPR has inspired a global arms race on privacy regulations
  • New US CISO appointments, April 2022
  • Spring4Shell patching is going slow but risk not comparable to Log4Shell
  • U.S. State Department unveils new Bureau of Cyberspace and Digital Policy

Fuzzing tool company launches initiative to secure open-source software

ForAllSecure offers to pay developers to use its software to eliminate exploits in their code.


Qualys Multi-Vector EDR update prioritizes alert response

The latest version of the Qualys Multi-Vector EDR tool includes additional threat-hunting and risk mitigation capabilities, improving alert prioritization and reducing the time needed to respond to threats.


Take LAPSUS$ teens seriously

After the Okta breach, LAPSUS$ is already back making trouble using low-tech techniques with a high rate of success.


Security Recruiter Directory

To find the right security job or hire the right candidate, you first need to find the right recruiter. CSO’s security recruiter directory is your one-stop shop.


What is spear phishing? Examples, tactics, and techniques

Spear phishing is a targeted email attack purporting to be from a trusted sender. Learn how to recognize—and defeat—this type of phishing attack.


5 VMware products need patching against serious security vulnerabilities

VMware urges patching Workspace ONE Access and VMware products that include components of VMware Identity Manager.


CrowdStrike and Mandiant form strategic partnership to protect organizations against cyber threats

Vendors say the partnership combines CrowdStrike’s Falcon platform with Mandiant’s breach investigation and response services offering tighter platform integrations, industry-leading intelligence, and shared expertise.


How GDPR has inspired a global arms race on privacy regulations

Companies with a global presence face the challenge of achieving compliance with an increasing array of regional data-protection regulations.


New cryptomining malware targets AWS Lambda

The malware, dubbed Denonia, is written in Go for easier deployment and uses AWS’s own open-source Go libraries.


New US CISO appointments, April 2022

Keep up with news of CSO, CISO, and other senior security executive appointments.


New PCI Data Security Standard v4.0 receives kudos for flexibility

Customization, multi-factor authentication are key features in PCI DSS v4.0 global payment benchmark.


Zoom’s bug bounty ROI clear as program pays $1.8 million to fix over 400 bugs

The firm’s CISO reflects on bug bounty ROI and selling the concept to senior leadership.


FoF

LightBeam launches data privacy automation platform to streamline compliance

New identity-centric platform designed to help businesses automate compliance against a patchwork of existing and emerging privacy regulations such as GDPR, CPRA, HIPAA and PCI DSS.