All2022May

GitHub to Developers: Turn on 2FA, or Lose Access

FBI Says Business Email Compromise Attacks Have Cost Over $43 Billion Since 2016

FBI: Business Email Compromise Attacks Led to More Than $43 billion in Losses Since 2016

GitHub to Enforce Two-Factor Authentication

FBI: Over $43B in BEC Losses Reported in Five Years

FBI: Losses From BEC Scams Surpass $43 Billion

Business Email Compromise Costs $43 Billion

Cisco Makes Public Its Cloud Controls Framework for Security Requirements

Losses from BEC Scams Mounting

Amazon’s Shuttering of Alexa Ranking Service Hits Cybersecurity Industry

GitHub 2FA Push is Positive, But There’s More to Be Done

Alexa Ranking Service Shutdown To Impact Cybersecurity

Bug Bounty Hunters: From Side Hustle to Tech Career

CREST Partners with Immersive Labs to Offer Course Focused on Incident Response

Iran-Linked Cobalt Mirage Extracts Money, Info from US Orgs – Report

COBALT MIRAGE Conducts Ransomware Operations in US

FBI: Business Email Compromise Resulted in Losses of $43 Billion Since 2016; BEC Attacks Increased by 65% Between 2019 and 2021

IBM Focuses on Shortage of AI Talent in IT and Security

Microsoft Elevation-of-Privilege Vulnerabilities Spiked Again in 2021

Hackers Could Track Your iPhone Even When It’s Off

CISA Adds Dozens of Vulnerabilities to Catalog of Exploited Bugs

No Results Found

GitHub to Developers: Turn on 2FA, or Lose Access

May 4, 2022 – All active GitHub users who contribute code will be required to enable at least one form of two-factor authentication by the end of 2023.

Contribution by:Andrew Hay

FBI Says Business Email Compromise Attacks Have Cost Over $43 Billion Since 2016

May 4, 2022 – The FBI released a public service announcement revealing that business email compromise (BEC) attacks caused domestic and international losses of more than $43 billion between June 2016 to December 2021, with a 65% increase in losses between July 2019 and December 2021.

Contribution by:Andy Gill

FBI: Business Email Compromise Attacks Led to More Than $43 billion in Losses Since 2016

May 4, 2022 – More than $43 billion has been lost through Business Email Compromise and Email Account Compromise scams since 2016, according to data.

Contribution by:Andy Gill

GitHub to Enforce Two-Factor Authentication

May 5, 2022 – In an announcement shared earlier today, Github said that all users who upload code to the site will need to enable one or more forms of 2FA by the end of 2023 to continue using the platform.

Contribution by:Andrew Hay

FBI: Over $43B in BEC Losses Reported in Five Years

May 5, 2022 – The FBI has disclosed that more than $43 billion has been lost from business email compromise attacks between June 2016 and December 2021, with BEC attack-related losses spiking by 65% from July 2019 to December 2021.

Contribution by:Andy Gill

FBI: Losses From BEC Scams Surpass $43 Billion

May 5, 2022 – The Federal Bureau of Investigation says business email compromise (BEC) and email account compromise (EAC) losses have surpassed $43 billion globally.

Contribution by:Andy Gill

Business Email Compromise Costs $43 Billion

May 5, 2022 – In a new public service announcement, the Federal Bureau of Investigation (FBI) said that the amount of money lost to business email compromise (BEC) scams continue to grow each year, with a 65% increase in the identified global exposed losses between July 2019 and December 2021.

Contribution by:Andy Gill

Cisco Makes Public Its Cloud Controls Framework for Security Requirements

May 5, 2022 – Cisco on Thursday released its Cloud Controls Framework (CCF), a set of comprehensive international and national security compliance and certification requirements combined into one framework.

Contribution by:Mark Arnold

Losses from BEC Scams Mounting

May 6, 2022 – The amount of money lost to business email compromise scams continues to grow each year, with a 65% increase in identified global exposed losses between July 2019 and December 2021.

Contribution by:Andy Gill

Amazon’s Shuttering of Alexa Ranking Service Hits Cybersecurity Industry

May 6, 2022 – Amazon has shut down Alexa.com. While it may not be immediately obvious, the decision to kill off the popular web traffic analysis and website ranking service does have some impact on the cybersecurity industry.

Contribution by:Andrew Hay

GitHub 2FA Push is Positive, But There’s More to Be Done

May 10, 2022 – All developers contributing code on GitHub will be required to enable at least one form of two-factor authentication (2FA) by the end of next year, with the site well into its efforts to move developers over in cohorts every few months.

Contribution by:Andrew Hay

Alexa Ranking Service Shutdown To Impact Cybersecurity

May 10, 2022 – SecurityWeek reports that the imminent shutdown of the Alexa Top Sites and Web Information Service APIs on Dec. 15 following the retirement of Alexa.com at the beginning of the month is a major hit for cybersecurity.

Contribution by:Andrew Hay

Bug Bounty Hunters: From Side Hustle to Tech Career

May 12, 2022 – The number of bug bounty programs offered by enterprises and government agencies continues to expand—presenting more opportunities for technologists to make extra money on a side hustle, explore a potential career change, or simply bask in the knowledge that they discovered a major flaw in a prominent website.

Contribution by:Josh Kocher

CREST Partners with Immersive Labs to Offer Course Focused on Incident Response

May 12, 2022 – CREST, a leading international non-profit cybersecurity accreditation and certification organization, announced plans this week to partner with Immersive Labs to help CREST members develop their defensive and offensive cybersecurity skills.

Contribution by:Andy Gill

Iran-Linked Cobalt Mirage Extracts Money, Info from US Orgs – Report

May 13, 2022 – The Iran-linked Cobalt Mirage crew is running attacks against America for both financial gain and for cyber-espionage purposes, according to Secureworks’ threat intelligence team.

Contribution by:Andy Gill

COBALT MIRAGE Conducts Ransomware Operations in US

May 13, 2022 – The Secureworks Counter Threat Unit (CTU) researchers are investigating attacks by the Iranian COBALT MIRAGE threat group, which has been operating since at least June 2020. Linked to the Iranian COBALT ILLUSION threat group, COBALT MIRAGE uses persistent phishing campaigns to gain access.

Contribution by:Andy Gill

FBI: Business Email Compromise Resulted in Losses of $43 Billion Since 2016; BEC Attacks Increased by 65% Between 2019 and 2021

May 16, 2022 – The Federal Bureau of Investigation (FBI) reported losses from business email compromise (BEC) attacks increased by 65% between July 2019 and December 2021.

Contribution by:Andy Gill

IBM Focuses on Shortage of AI Talent in IT and Security

May 2o, 2022 – IBM has been warning about the cybersecurity skills gap for several years now and has recently released a report on the lack of artificial intelligence (AI) skills across Europe.

Contribution by:Andrew Hay

Microsoft Elevation-of-Privilege Vulnerabilities Spiked Again in 2021

May 24, 2022 – But there was a substantial drop in the overall number of critical vulnerabilities that the company disclosed last year, new analysis shows.

Contribution by:Tim McGuffin

Hackers Could Track Your iPhone Even When It’s Off

May 16, 2022 – Even shutting down your iPhone might not keep it safe from hackers, but experts say most people don’t have much to worry about.

Contribution by:Andrew Hay

CISA Adds Dozens of Vulnerabilities to Catalog of Exploited Bugs

May 25, 2022 – The Cybersecurity and Infrastructure Security Agency (CISA) added 41 vulnerabilities to its catalog of known exploited bugs this week, one of the largest batches of additions to the list since CISA began compiling it in November.

Contribution by:Andrew Hay

Where There is Unity, There is Victory

[Ubi concordia, ibi victoria]

– Publius Syrus

Contact Lares Consulting logo (image)

Continuous defensive improvement through adversarial simulation and collaboration.

Email Us

©2019 Lares, LLC | All rights reserved.
Privacy Preferences

When you visit our website, it may store information through your browser from specific services, usually in the form of cookies. Some types of cookies may impact your experience on our website and the services we are able to offer. It may disable certain pages or features entirely. If you do not agree to the storage or tracking of your data and activities, you should leave the site now.

Our website uses cookies, many to support third-party services, such as Google Analytics. Click now to agree to our use of cookies or you may leave the site now.