Here are a few articles related to cyber-security for the week of 05/20/2019. These are just reminders that attacks come from all directions. It is impossible to determine from which direction the next attack will come. Therefore, defense-in-depth is mandatory in order to best be prepared to prevent your company from becoming a victim.
As I have heard multiple times from several mentors:
“Prevention is ideal, detection is a must, detection without response is useless“
- https://www.bleepingcomputer.com/news/security/keyloggers-injected-in-web-trust-seal-supply-chain-attack/
- https://blogs.akamai.com/sitr/2019/05/bots-tampering-with-tls-to-avoid-detection.html
- https://www.zdnet.com/article/chinese-cyberspies-breached-teamviewer-in-2016/
- https://www.welivesecurity.com/2019/05/14/plead-malware-mitm-asus-webstorage/
- https://www.zdnet.com/article/sha-1-collision-attacks-are-now-actually-practical-and-a-looming-danger/