From MS-ISAC –
The holiday season has sadly come to an end, but hopefully you were able to treat yourself to some of the latest gadgets! Just remember that, however impressive the latest iPhone or gaming computer might be, the ability and knowledge to properly secure these devices is more important than ever, as any device that connects to the internet is potentially vulnerable and could become compromised. In honor of Data Privacy Day (January 28), here are five great tips to keep in mind that can help you securely configure your new devices! continue reading →
Parler, the beleaguered social network advertised as a “free speech” alternative to Facebook and Twitter, has had a tough month. Apple and Google removed the Parler app from their stores, and Amazon blocked the platform from using its hosting services. Parler has since found a home in DDoS-Guard, a Russian digital infrastructure company. But now it appears DDoS-Guard is about to be relieved of more than two-thirds of the Internet address space the company leases to clients — including the Internet addresses currently occupied by Parler.
Original release date: January 15, 2021
The National Security Agency (NSA) has released an information sheet with guidance on adopting encrypted Domain Name System (DNS) over Hypertext Transfer Protocol over Transport Layer Security (HTTPS), referred to as DNS over HTTPS (DoH). When configured appropriately, strong enterprise DNS controls can help prevent many initial access, command and control, and exfiltration techniques used by threat actors.
Dark web servers are hard to find – but not impossible.
A complaint and arrest warrant were recently unsealed in U.S. federal court, charging former Zoom employee Xinjiang Jin, also known as Julien Jin, with several crimes he carried out on behalf of China. Jin worked for U.S.-based Zoom in the People’s Republic of China (PRC). The FBI says he helped the PRC reveal political opponents and shut down Zoom meetings that took place in May and June 2020. The meetings involved U.S. citizens and were part of efforts to commemorate the 1989 Tiananmen Square massacre. He also fabricated evidence that hosts and attendees of these meetings were involved with terrorist organizations and the distribution of child pornography. Jin is believed to be in China, and the FBI released a wanted poster. The U.S. government has long warned… Read more
As organizations worldwide continue examining their networks for tactics, techniques, and procedures used in the SolarWinds cyberattack, something surprising is happening. Some revealed the attack TTPs were being carried out within their network despite having not applied any of the compromised SolarWinds updates or use the SolarWinds Orion product. And other organizations reported finding… Read more