A bi-weekly roundup of the latest cybersecurity news and research
Halfway down the week and we’ve got you covered till the weekend about all the nitty-gritty in the world of cybersecurity!
1. Microsoft’s ‘passwordless future’ runs the risk of shutting down older people.
Nobody likes passwords. They’re inconvenient. They’re a prime target for attacks. Still, for years we’ve been using passwords as the important layer of security for everything on our digital platforms ranging from email to bank accounts, to video games. We all know one authentication method can’t fit all of us and everyone should be able to securely access their accounts in a way that suits them. It’s time that new technological advancements don’t exclude a chunk of users rather make the internet a much inclusive place.
2. 7 reasons to embrace DevSecOps today: Boost your organization’s cybersecurity resiliency!
DevSecOps involves creating a ‘Security as Code’ culture with ongoing, flexible collaboration between release engineers and security teams. The DevSecOps movement, like DevOps itself, is focused on creating new solutions for complex software development processes within an agile framework. When organizations code with security in mind from the outset, it’s easier and less costly to catch and fix vulnerabilities before they go too far.
3. Phishing thru your QR or Qrishing: that is how this rip-off works that the Police in Spain warn about.
With everything evolving around so exponentially, why should phishing lag behind? Looks like convenience has become a threat now. QR code has made everything user-friendly and there is no denying that with convenience comes the attacks. Threat actors are now utilizing QR codes to conduct QRishing. We all love simplicity and so do cybercriminals. So, remember your one QR scan can cause you huge damage.
4. The First Half of 2021 Saw a 700% Increase in Scam SMS
Cyber actors are taking the way forward by shifting their focus from Emails to mere SMS. We all are reminded every now and then about how dangerous emails can be and a wrong click can cause you a lot and we all believe when we are on phones, we are less wary. We assume that our smartphones are more secure than computers. But guess what smartphone security has limitations, and cannot directly protect you against smishing. Emails can be blocked or flagged suspicious but there is no way for SMS to be flagged. So, the tables are turned and you better be more careful dealing with an SMS too.
5. UK government’s new digital identity system to cost up to £400m
UK is all set to replace its failed identity system with a new one. The UK is developing a new digital identity framework so people can confidently verify themselves using modern technology and organisations have the clarity they need to provide these services. This will make life easier and safer for people across the country and will form a strong foundation for the future digital economy. This system will make everything easier and people will be able to prove their and identity and eligibility easily.
6. LockBit Gang to Publish 103GB of Bangkok Air Customer Data
After recently taking down Accenture LockBit’s next target was Bangkok Airways, the airline confirmed it was the victim and discloses that a few of the passengers’ data was breached. The security breach wasn’t able to impact Bangkok Airways’ operational or aeronautical security system but the attackers were maybe successful in fetching personal data of the passengers, noted Bangkok Airways. Bangkok Airways warns its customers to be vigilant and be aware of any suspicious or unsolicited calls and/or emails.
7. 7 Ways to Defend Mobile Apps, APIs from Cyberattacks
Such a match of 7-7. While we move towards the end of the newsletter here is something you should read to keep your apps safe because a safe environment is never a choice rather a necessity, now sit back and defend your presence over the vast internet. Well, we all know mobile devices have become more popular than desktops and laptops. Not only are they easy to carry, but technological advancements have also enabled them to perform nearly similar functions as desktops do. Hence, their protection is important too.