Lessons from CrowdStrike update failure: Make sure your incident recovery plan is ready – Howard Solomon Reports
Last month’s global failure of a CrowdStrike update shows the importance of network visibility and being prepared for the collapse of critical IT systems, says an expert. “It was definitely a significant event, and when any of those events happen it really is about enacting your major incident response procedures,” Denis Villeneuve, cybersecurity and resilience […]
Proofpoint configuration problem exploited in huge spam attacks
Proofpoint is a commercial email security service aimed at protecting organizations. However, until recently a threat actor was able to abuse Proofpoint relay servers to spoof authenticated emails that seemed to come from brand names like Disney+, Fox News, Coca-Cola, Nike, IBM and others. Researchers at Guardio Labs call the technique echo spoofing, and say […]
CrowdStrike update: Warnings from national cyber agencies, repair options from Microsoft
National cybersecurity agencies in the U.S., Canada, the U.K. and Australia issued security warnings about the faulty CrowdStrike Falcon update that bricked an estimated 8.5 million corporate PCs and servers around the world. At the same time Microsoft released a recovery tool over the weekend to help IT leaders automate recovery from what for some […]
CrowdStrike update causes global IT outages, fix is available
Some airlines, banks and government services around the world have been affected by a faulty software update for Windows PCs running CrowdStrike’s Falcon security suite which has knocked out desktop PCs. “This is not a security incident or cyberattack,” the company said in a statement. “The issue has been identified, isolated and a fix has […]
Cyber Security Today, July 8, 2024 – New ransomware group discovered, and summer podcast break starts
A new ransomware group is discovered. Welcome to Cyber Security Today. It’s Monday July 8th, 2024. I’m Howard Solomon, contributing reporter on cybersecurity for TechNewsday.com. Starting today I’m taking a few weeks off to enjoy the summer, so this will be a short podcast: A new ransomware as a service group has emerged. According to […]
Cyber Security Today, Week in Review for week ending July 5, 2024
Welcome to Cyber Security Today. I’m Howard Solomon, contributing reporter on cybersecurity for TechNewsday.com. What should management and IT leaders do when their organization is hit by ransomware? To help answer that question today, I’m joined by Imran Ahmad, a partner in the Norton Rose Fulbright law firm and Canadian co-head of the firm’s cybersecurity […]
Cyber Security Today, July 5, 2024 – Prepare for business email compromise attacks
Prepare for business email compromise attacks. Welcome to Cyber Security Today. It’s Friday July 5th, 2024. I’m Howard Solomon, contributing reporter on cybersecurity for TechNewsday.com. It’s the Independence Day weekend in the U.S. Thanks for tuning in on the holiday. Ransomware gets headlines, but business email compromise scams — where employees are tricked into sending […]
Cyber Security Today, July 3, 2024 – Beware of advanced attack tactics
Beware of advanced attack tactics. Welcome to Cyber Security Today. It’s Wedneday July 3rd, 2024. I’m Howard Solomon, contributing reporter on cybersecurity for TechNewsday.com. Threat actors are getting craftier. That’s no surprise. But a recent report from Menlo Security highlighted the tactics of three sophisticated attack groups as examples of what defenders have to prepare […]
Cyber Security Today, July 1, 2024 – A critical patch for GitLab
A critical patch for GitLab. Welcome to Cyber Security Today. It’s Monday, July 1, 2024. I’m Howard Solomon, contributing reporter on cybersecurity for TechNewsday.com. Happy Canada Day to listeners in this country. Thanks for tuning in on this long weekend. GitLab has released 14 security fixes for both the community and enterprise editions of its […]
Cyber Security Today, Week in Review for week ending June 28, 2024
Welcome to Cyber Security Today. This is the Week in Review for the week ending Friday June 28th, 2024. I’m Howard Solomon, contributing reporter on cybersecurity for TechNewsday.com. In a few minutes Terry Cutler of Montreal’s Cyology Labs will be here to discuss three of the week’s more interesting developments: The latest MOVEit vulnerability, […]
