Managed Security Services Provider (MSSP) News: 06 August 2018
Each morning MSSP Alert broadcasts a quick lineup of news, analysis and chatter from across the global managed security services provider, SOC (security operations center) and IT outsourcing ecosystem.
Here’s the update for Monday, August 6, 2018.
10. U.S. Privacy Legislation: U.S. tech companies, battered over their handling of consumers’ personal data, are hoping to get ahead of the public and legal fallout by working with policy makers to help shape potential new federal privacy legislation, The Wall Street Journal reports. The effort involves tech coalitions such as the Information Technology Industry Council—representing such giants as Facebook, Amazon, Google and Salesforce, the report says.
9. U.S. Election Security: The Democratic National Committee warned party candidates running in November elections not to use devices made by Chinese telecommunications companies ZTE and Huawei because they pose a security risk, this report reveals…
8. Electric Grid Counter Attacks: Top Trump officials are devising new penalties to hit back more forcefully at state-sponsored hackers of critical infrastructure to deter attacks such as the successful penetration of U.S. utilities by Russian agents last year, The Wall Street Journal says.
7. Singapore Cyberattack: Singapore’s worst cyber attack in its history, in which personal information of about 1.5 million people including the Prime Minister was stolen, has the hallmarks of a state-linked group, Reuters says.
6. Virus Impacts iPhone Shipments?: A computer virus outbreak at Taiwan Semiconductor Manufacturing (TSMC) could delay chip shipments for Apple’s new iPhones but the impact will be limited as TSMC has prepared itself for such disruptions, a report says.
5. Two-Factor Authentication Breach: The widely reported Reddit hack apparently involved an SMS two factor authentication breach. During a recent meeting with ChannelE2E, ESET officials noted that SMS faces a range of security risk — and that’s why ESET promotes non-SMS two-factor authentication…
4. Multi-Factor Authentication (MFA): OneLogin has launched OneLogin Protect 4.0 authenticator — which boosts MFA security while improving customer experiences, the company asserts.
3. Bug Hunters: General Motors is hiring hackers to find bugs in car computers and associated systems.
2. Service Desk Security Leak: Atlassian has warned Jira Service Desk toolkit customers to change their helpdesk email account passwords – after a glitch caused the credentials to be sent to strangers’ servers.
1. Black Hat USA 2018 Conference: We’re blogging live all week from the conference. Keep checking that link for multiple daily updates.