Microsoft SMB v3 flaw under attack; Plus, APT groups target Biden, Trump campaigns

Security Digest: A roundup of security technology content from TechTarget

Security Digest Information security news and advice from TechTarget's network |June 10, 2020 FEATURED STORY CISA warns Microsoft SMB v3 vulnerability is under attack by Alexander Culafi, News Writer CISA issued an alert Friday about attacks on a Microsoft Server Message Block v3 vulnerability and a proof-of-concept code that exploits the flaw in unpatched systems. Advertisement NEWS   Risk & Repeat: Are ransomware groups joining forces? This episode of the Risk & Repeat podcast discusses how ransomware groups are apparently teaming up to encourage the practice of victim shaming.   Chinese, Iranian hackers targeted Trump and Biden campaigns Shane Huntley, director of Google's Threat Analysis Group, announced that two state-backed APT groups targeted campaign staff for both Joe Biden and President Donald Trump.   Attacks on Exim vulnerability continue one year later Though the Exim mail transfer agent vulnerability was publicly disclosed in June 2019, a significant number of unpatched versions remain online and are at risk of attacks.   Cybersecurity needs more women role models, says report A report compiled by security assurance organization Crest highlighted the progress made on gender diversity in cybersecurity, and offers pointers for next steps. EXPERT ADVICE   12 Microsoft 365 security best practices to secure the suite Migrating to or operating cloud-based Microsoft 365 can bring with it a host of problems and misconfigurations. Check out 12 best practices to tighten Microsoft 365 security.   Guide to preventing coronavirus phishing and ransomware Malicious actors are taking advantage of coronavirus fears to wreak havoc on cybersecurity. Check out our guide to learn about phishing and ransomware threats and how to stop them.   How automating incident response benefits security programs Automating incident response can benefit security both in the cloud and in traditional settings. Expert Dave Shackleford explains what it can be used for and how it helps.   SASE adoption accelerating as workforce goes remote Experts suggest enterprises should consider SASE adoption for network security as the remote workforce grows in order to reduce cost and complexity.   Is VPN split tunneling worth the security risks? Enabling VPN split tunneling may increase speed and decrease bandwidth use and costs, but it also increases the number of security vulnerabilities faced.   Top 4 essential identity and access management best practices Now is the time to shore up the who, what and where of network identities. Adopt these four critical identity and access management best practices to bolster your infosec program. About This E-Newsletter The Security Digest is published by TechTarget, Inc., 275 Grove Street, Newton, Massachusetts, 02466 US. Click to: Unsubscribe. You are receiving this email because you are a member of TechTarget. When you access content from this email, your information may be shared with the sponsors or future sponsors of that content and with our Partners, see up-to-date Partners List, as described in our Privacy Policy. For additional information, please contact: webmaster@techtarget.com. © 2020 TechTarget, Inc. all rights reserved. Designated trademarks, brands, logos, and service marks are the property of their respective owners. Privacy Policy | Partners List