Managed Security Services Provider (MSSP) News: 08 February 2018
Each morning MSSP Alert broadcasts a quick lineup of news, analysis and chatter from across the global managed security services provider, SOC (security operations center) and IT outsourcing ecosystem.
Here’s the lineup for Thursday, February 8, 2018:
10. Cross-Border Privacy: Microsoft, Google and Apple have thrown their support behind proposals in Congress to deal with cross-border data requests from law enforcement — even as the issue heads for review before the U.S. Supreme Court, according to Bloomberg.
9. Sales Breach: Data on around 800,000 Swisscom customers leaked when security at an external sales partner was breached, prompting the Swiss group to tighten access to its files, Reuters says.
8. Cyber Fraud Marketplace: Federal authorities shut down an online cybercrime forum they said was responsible for more than $530 million in fraud over seven years, The Wall Street Journal says. The forum, called Infraud, was founded in 2010 as an online marketplace where criminals could buy and sell stolen credit-card numbers, bank account information and identities, the report revealed.
7. U.S. vs. Huawei, ZTE: Two Republican Senators introduced legislation on Wednesday that would block the U.S. government from buying or leasing telecommunications equipment from Huawei Technologies and ZTE, citing concern the Chinese companies would use their access to spy on U.S. officials, Reuters says. Both companies have repeatedly denied that they provide back-door product access for China’s use.
6. Breach Lawsuit: Bangladesh’s central bank will file a lawsuit against a Philippines bank over its role in an $81 million cyber-heists two years ago, Reuters says.
5. AWS Exposure: Another misconfigured Amazon Web Services (AWS) S3 cloud storage bucket has been left insecure — this time exposing the sensitive data of 12,000 social media influencers, according to SC Magazine.
4. Microsoft Cloud Security: Symantec is expanding its Web Security Service to protect Microsoft Azure and Office 365 cloud customers. Then again, so is every other security company…
3. Microsoft Windows Vulnerabilities, Exploits: A security researcher has revealed how sophisticated NSA exploits, which were stolen and published online by hacker group Shadow Brokers, can be tweaked to exploit vulnerabilities in all versions of Windows, including Windows 10, SC Magazine reports.
1. Check Point Strategy: Key partners including Compuquip Cybersecurity and Access IT Group endorsed Check Point Software’s 5th Generation Cybersecurity strategy during the CPX 360 conference yesterday in Las Vegas. We’ll share more thoughts on the strategy soon.