A quick Saturday digest of cybersecurity news articles from other sources.
Got COBOL? Our Government Runs on a 60-Year-Old Coding Language, and Now It’s Falling Apart
Remeber Y2K? The COVID crisis has increased demand on old governmental systems and the call has gone out again for COBOL programmers.
7 of the best VPN providers for small businesses
With work shifting away from offices, SMBs need a top-shelf VPN to continue doing business. Here are some of the leading brands.
Google removes Android VPN with ‘critical vulnerability’ from Play Store
Google has removed the SuperVPN program from the Google Play store after researchers notified it of a critical vulnerability.
Not again! Thousands of Dark Web sites deleted in attack on free hosting service
It’s the second time that the popular Daniel’s Hosting platform was attacked in 16 months. This time, 7,600 Dark Web sites were obliterated.
Ubuntu 20.04: The most exciting new features
Ubuntu fans, it’s that time of the year–the next release is upon us! Watch for these features to be included with Ubuntu 20.04.
Microsoft Buys Corp.com So Bad Guys Can’t
In February, KrebsOnSecurity told the story of a private citizen auctioning off the dangerous domain corp.com for the starting price of $1.7 million. Domain experts called corp.com dangerous because years of testing showed whoever wields it would have access to an unending stream of passwords, email and other sensitive data from hundreds of thousands of Microsoft Windows PCs at major companies around the globe. This week, Microsoft Corp. agreed to buy the domain in a bid to keep it out of the hands of those who might abuse its awesome power.
Wisconsin native Mike O’Connor, who bought corp.com 26 years ago but has done very little with it since, said he hoped Microsoft would buy it because hundreds of thousands of confused Windows PCs are constantly trying to share sensitive data with corp.com. Also, early versions of Windows actually encouraged the adoption of insecure settings that made it more likely Windows computers might try to share sensitive data with corp.com.
The ‘Justice League’ in Cyberspace: Defending Healthcare from Hackers
They are a volunteer group of more than 1,000 security pros, united by a common purpose: to stop cyberattacks against medical facilities during the COVID-19 pandemic. Some have called them the Justice League in cyberspace, but their real name is the COVID-19 CTI League (for cyber threat intelligence).
Coronavirus crisis gives an opportunity for AI to shine
Artificial intelligence and machine learning can help slow the spread of COVID-19 and find treatments faster. But there are challenges.
What You Need to Know About COVID-19 Scams
MS-ISAC Vol. 15 / Issue 4 / April 2020
Taking advantage of current events is a common tactic that cybercriminals use to fuel their malicious activities. With the global pandemic of COVID-19 and an overwhelming desire for the most current information, it can be difficult for users to ensure they are clicking on reliable resources. So far, the MS-ISAC has seen malicious activity come through just about every channel: email, social media, text and phone messages, and misleading or malicious websites. continue reading →
ICANN asks registrars to crack down on scam coronavirus websites
It doesn’t have regulatory authority, so it can’t do much, but the hundreds of registrars it authorizes can and should.
APR
About the Author:
I am a cybersecurity and IT instructor, cybersecurity analyst, pen-tester, trainer, and speaker. I am an owner of the WyzCo Group Inc. In addition to consulting on security products and services, I also conduct security audits, compliance audits, vulnerability assessments and penetration tests. I also teach Cybersecurity Awareness Training classes. I work as an information technology and cybersecurity instructor for several training and certification organizations. I have worked in corporate, military, government, and workforce development training environments I am a frequent speaker at professional conferences such as the Minnesota Bloggers Conference, Secure360 Security Conference in 2016, 2017, 2018, 2019, the (ISC)2 World Congress 2016, and the ISSA International Conference 2017, and many local community organizations, including Chambers of Commerce, SCORE, and several school districts. I have been blogging on cybersecurity since 2006 at http://wyzguyscybersecurity.com