April 18, 2021

Three trends to focus on include 1) the expanding cyber-attack Forbes - 3 Key Cybersecurity Trends To surface (remote work, IoT supply chain), 2) Ransomware as a Know For 2021 (and On ...) cyber weapon of choice, 3) threats to critical infrastructure via ICS, OT/IT cyber-threat convergence. The study, sponsored by HP, delves into the publicly available in- 4/20/2021 12:00 pm MST FBI Speaker Scott Augenbaum's Fireside Chat by Presidio and Palo Alto cybernews - We may be closer to formation (such as whistle-blowers and insider leaks reported in Cortex Symphony 2021/Palo Alto Networks - The Premier Summit for Se- cyberwar than ever before, study about 4/20/2021 - 4/21/2021 the press) and analyses more than 200 known cyber incidents be- curity Operations nation-states concludes tween 2019-2021. 4/20/2021 - 4/22/2021 F5 Agility White House to Seek Industry Input on Standards for those mechanisms will likely come from NIST, which 4/21/2021 11:00 am MST EC-Council - What you can do to get ahead of the next round of attacks New Software Security Rules, NSC Official Greene said is good at engaging with the private sector. 4/22/2021 11:00 am EST ITPro VTS - Cybersecurity Risk Management Says 4/27/2021 12:00 pm EST Mainline Information Systems - Enterprise Security with IBM Z The report also found that, since 2011, 42 percent of cyber- Compliance Week - Data breach disclo- Zia/ASG/BigID - Expert Virtual Panel: Tackling Dark Data with Privacy- security incidents disclosed have not specified the type of attack 4/27/2021 11:00 am MST sures drop in 2020, report says Aware Governance used to penetrate the company’s systems 88% of malware was delivered by email into users’‍inboxes, in 4/27/2021 10:00 am MST Supply Chain Now - Setting the Standard for Supply Chain Security SecurityMEA - 29% of malware captured many cases having bypassed gateway filters. It took 8.8 days, on 4/28/2021 11:30 am EST Tessian - Account takeover is an issue, your SEG is not enough previously unknown finds HP’s Quarterly average, for threats to become known by hash to antivirus en- 4/29/2021 DataConnectors - Phoenix Virtual Cybersecurity Summit Threat Insights Report gines NCCoE Learning Series Webinar: What’s Ahead from NIST in Cybersecurity According to the report, 91% of IT professionals say API security 4/29/2021 3:00 pm EST ZDNet - API security becomes a ‘top’‍pri- and Privacy? should be considered a priority in the next two years, especially ority for enterprise players as over 70% of enterprise firms are estimated to use over 50 APIs. CSO - Cybersecurity in 2021: Stopping the Can any software development shop say with confidence that it They call it “collusion fraud” because it involves two or more parties F5 Labs Take Down Collusion Fraud- madness can withstand such a sophisticated, concerted effort? working together to defraud a third using a single transaction that cuts Another follow-up fact is that besides preventing internal security sters AiThority - Top Trends in In-House IT Se- across different organizations. threats, companies are looking forward to automating compliance curity E-Commerce startup Signifyd raises with state law and regulations $205M in funding to provide e- Signifyd created a market for guaranteed fraud protection against all VentureBeat - Trend Micro: Remote work More specifically, the company reported a double-digital increase commerce protection and eliminate chargebacks, including those resulting from consumer abuse. drove high-risk email threats up 32% in in detections spanning malware, credential theft, and phishing fraud 2020 emails. Europe to ban the use of A.I. for mass In addition, the proposed rule also wants to prohibit AI systems that surveillance and social credit scores cause harm to people by manipulating their behavior, opinions, or de- as the EU plans to regulate and im- cisions; exploit or target people’s vulnerabilities, and for mass surveil- pose strict rules for artificial intelli- lance. gence Early Bird Registration (don't miss out): https://hopin.com/ "The email was sent from a Hotmail ID and was titled ‘RE: Home Loan,’‍ events/the-rise-of-privacy-tech-virtual-summit-2021 Tax Phish Swims Past Google Work- followed by a reference number and the date, making it seem like the space Email Security email was part of an ongoing conversation to lend it more legitimacy.” Call for Speakers (privacy innovation talks):https:// Microsoft's latest preview for its advanced security product Microsoft Microsoft Defender for Endpoint now airtable.com/shrYJbScDCWIIF7jB Defender for Endpoint now supports unmanaged devices running Win- protects unmanaged BYO devices dows, Linux, macOS, iOS and Android as well as network devices. According to eSentire’s research team, cybercriminals are using spear- Golden Chickens and New Spear- ‍ Call for Sponsors (brand amplification & thought leader- phishing emails with a malicious zip file that uses the exact name as a Phishing Campaign ship): https://airtable.com/shrMHFAzDjwFReWG2 job position listed on the targeted professional’s LinkedIn profile.