Security daily (24-02-2021)

How to set up a recurring Security Hub summary email

AWS Security Hub provides a comprehensive view of your security posture in Amazon Web Services (AWS) and helps you check your environment against security standards and best practices. In this post, we’ll show you how to set up weekly email notifications using Security Hub to provide account owners with a summary of the existing security […] (AWS Security Blog)

Biden signs executive order demanding supply chain security review

President Joe Biden signed an executive order on Wednesday directing federal agencies to conduct a review of supply chain security risks in industries including information technology. While a significant goal of the order is to address shortages of a wide assortment of critical imported components such as electric batteries and pharmaceuticals, it does include a mandated review of the information and communications technology sector. A prominent justification for the review is a desire to rely less on semiconductors manufactured overseas. Biden, at a news conference to herald his signing of the executive order, said “we need to make sure these supply chains are secure and reliable.” It’s an issue, he said, “of both concern for economic security as well as our national security.” Espionage remains a significant concern, as well, after hackers leveraged access in a federal contractor to gather sensitive from throughout the U.S. government. The supply chain danger […] The post Biden signs executive order demanding supply chain security review appeared first on CyberScoop. (CyberScoop)

Election Assistance Commission loses another key staffer, Jerome Lovato

Another top official is exiting the staff of the Election Assistance Commission, the third in recent months for the small agency that plays an outsized role in U.S. election security. Jerome Lovato, the testing and certification director for voting system certification at the EAC, is leaving that position next month, two sources told CyberScoop. And the commission began advertising the opening for the job he holds last week. His departure follows Josh Franklin leaving his job as EAC chief technology officer in December, and in November, Maurice Turner leaving as senior adviser to the executive director of the commission. The exits come at a sensitive time for the commission. The EAC this month voted to approve a long-awaited update to its widely-used voluntary voting system guidelines, nicknamed VVSG 2.0, and a perhaps years-long implementation period will follow. Those guidelines emphasize the value of risk-limiting audits that help verify election results, […] The post Election Assistance Commission loses another key staffer, Jerome Lovato appeared first on CyberScoop. (CyberScoop)

Plane-maker Bombardier discloses breach after stolen data surfaces

Hackers have exposed data about employees, customers and suppliers of Bombardier, a Canadian plane manufacturer, in what appears to be the latest ripple effect from a larger security incident humming through the private sector in North America.  A forensic analysis revealed that “confidential” information originating at Bombardier was stolen in a recent incident, the company said Tuesday. The Montreal-based Bombardier, which reported $16 billion in revenue in 2018, did not specify exactly what happened or when, though it did say the breach was the result of a “vulnerability affecting a third-party file-transfer application.” “The ongoing investigation indicates that the unauthorized access was limited solely to data stored on the specific servers,” the company said. “Manufacturing and customer support operations have not been impacted or interrupted.” The Bombardier news appears to be a reference to Accellion, an IT services provider victimized last year in an incident that is continuing to have […] The post Plane-maker Bombardier discloses breach after stolen data surfaces appeared first on CyberScoop. (CyberScoop)

VMware Warns Of Critical Remote Code Execution Flaw

(News ≈ Packet Storm)

SolarWinds Hack Was The Work Of At Least 1,000 Engineers, Tech Execs Tell Senate

(News ≈ Packet Storm)

Bombardier Data Posted On Ransomware Site Following FTA Hack

(News ≈ Packet Storm)

SolarWinds Hackers Also Went After NASA And The FAA

(News ≈ Packet Storm)

Tax Season Ushers in Quickbooks Data-Theft Spike

Quickbooks malware targets tax data for attackers to sell and use in phishing scams. (Threatpost)

Mozilla Patches Bugs in Firefox, Now Blocks Cross-Site Cookie Tracking

Mozilla said its Total Cookie Protection feature in Firefox 86 prevents invasive, cross-site cookie tracking. (Threatpost)

VMWare Patches Critical RCE Flaw in vCenter Server

The vulnerability, one of three patched by the company this week, could allow threat actors to breach the external perimeter of a data center or leverage backdoors already installed to take over a system. (Threatpost)

Nvidia’s Anti-Cryptomining GPU Chip May Not Discourage Attacks

The hotly anticipated GeForce RTX 3060, a ray-tracing-friendly, advanced gaming graphics chip, will also throttle Ethereum mining. (Threatpost)

Microsoft Lures Populate Half of Credential-Swiping Phishing Emails

As more organizations migrate to Office 365, cybercriminals are using Outlook, Teams and other Microsoft-themed phishing lures to swipe user credentials. (Threatpost)


/security-daily/ 25-02-2021 23:44:28