A quick Saturday digest of cybersecurity news articles from other sources.
Social Engineering: How a 15-yo Brit Used it Against the US Gov’t and Why It Matters To Your Business
In June 2015, a British boy named Kane Gamble—who was 15 years old then—targeted CIA heads and FBI directors and gained access to classified documents. This is an interesting story about how a teenager used social engineering techniques to gain access to highly classified accounts and documents.
IC3 Issues Alert on Tech Support Fraud
03/29/2018 01:00 PM EDT Original release date: March 29, 2018
The Internet Crime Complaint Center (IC3) has released an alert on tech support fraud. Tech support fraud involves criminals claiming to provide technical support to fix problems that don’t exist. Their methods include placing calls, sending pop-ups, engaging misleading lock screens, and sending emails to entice users to accept fraudulent tech support services. Users should not give control of their computers or mobile devices to any stranger offering to fix problems.
NCCIC/US-CERT encourages users and administrators to refer to the IC3 Alert and the NCCIC Tip on Avoiding Social Engineering and Phishing Attacks for more information. If you believe you are a victim of a tech support scam, file a complaint with the IC3 at www.ic3.gov.
Facebook revamps security, privacy settings following huge data scandal
Facebook says it’s going to reach into the 20 or so dusty corners where it’s tucked away privacy and security settings and pull them into a centralized spot for users.
How to check if your Facebook data was used by Cambridge Analytica
Try this link: https://www.facebook.com/help/1873665312923476
Panera Bread customer records exposed via leaky database – dough!
There’s a war of words going on at the moment between veteran cybercrime reporter Brian Krebs and US bakery chain Panera Bread.
5 million credit cards exposed in Saks and Lord & Taylor data breach
A Dark Web monitoring company announced the breach via Twitter on April Fool’s Day, but it wasn’t a joke.
Update now! Microsoft’s April 2018 Patch Tuesday – 65 vulns, 24 critical
Here’s what you need to know about the April 2018 Patch Tuesday updates…
3 critical Flash vulnerabilities patched. Update now!
Cybercriminals love that you run Flash. Don’t.
Share
APR
About the Author:
I am a cybersecurity and IT instructor, cybersecurity analyst, pen-tester, trainer, and speaker. I am an owner of the WyzCo Group Inc. In addition to consulting on security products and services, I also conduct security audits, compliance audits, vulnerability assessments and penetration tests. I also teach Cybersecurity Awareness Training classes. I work as an information technology and cybersecurity instructor for several training and certification organizations. I have worked in corporate, military, government, and workforce development training environments I am a frequent speaker at professional conferences such as the Minnesota Bloggers Conference, Secure360 Security Conference in 2016, 2017, 2018, 2019, the (ISC)2 World Congress 2016, and the ISSA International Conference 2017, and many local community organizations, including Chambers of Commerce, SCORE, and several school districts. I have been blogging on cybersecurity since 2006 at http://wyzguyscybersecurity.com