Managed Security Services Provider (MSSP) News: 14 May 2018
Each morning MSSP Alert broadcasts a quick lineup of news, analysis and chatter from across the global managed security services provider, SOC (security operations center) and IT outsourcing ecosystem.
Here’s the lineup for Monday, May 14, 2018.
9. DDoS Attack Arrest: An Ohio man named James Robinson was arrested and charged in federal court for launching denial of service attacks that shut down web sites for the city of Akron and the Akron Police Department, according to the FBI.
8. White House Email Security: Less than two weeks after a report showed that only one of 26 web domains managed by the Executive Office of the President fully implemented a required email security protocol that prevented fraud, five more domains have implemented that protocol, according to the Global Cyber Alliance, a cybersecurity advocacy group, Axios reports.
7. Android Security: Google Android Security Director Dave Kleidermacher says the company will now require OEMs to roll out regular security updates, according to Android Police.
6. Chili’s Breach: The restaurant chain says some customers’ payment card information may have been breached from March through April 2018, according to a Chili’s breach disclosure from parent Brinker International.
5. Vega Stealer Malware: Email security vendor Proofpoint says it has observed and blocked new malware called Vega Stealer that is being used in the campaign to steal saved credentials, credit card data, and profile information in the Chrome and Firefox browsers. The malware is also being used to steal other sensitive data from infected computers, DarkReading reports.
4. IBM Bans Removable Storage: IBM is banning all employees from using removable storage devices in all facilities spanning the globe, according to Digital Trends. The news arrives by way of a leaked advisory written by Chief Information Security Officer Shamla Naidoo, who cites “possible financial and reputational damage from misplaced, lost or misused removable portable storage devices” as the reason for the ban.
3. Digital Bank Heists?: An as yet unknown amount of funds were sucked out of at least five Mexican financial groups through “unauthorized transfers” in recent days, a top central bank official said on Friday, while stopping short of calling it a cyber attack, Reuters says.
1. Conference: The Red Sky Security Conference is set for this week in Utah. Midmarket IT solutions provider Presidio recently acquired Red Sky as part of an accelerated push into managed security and cyber consulting services.