Microsoft seizes malicious domains; Plus, RSA finds most phishing attacks target Canada

Security Digest: A roundup of security technology content from TechTarget

Security Digest Information security news and advice from TechTarget's network |July 15, 2020 FEATURED STORY Microsoft seizes malicious domains used in COVID-19 phishing by Arielle Waldman, News Writer Microsoft went to court to seize several malicious domains that were used by cybercriminals in extensive phishing and BEC attacks on Office 365 accounts amid the current pandemic. Advertisement NEWS   RSA finds two-thirds of phishing attacks directed at Canada RSA Security researchers found that nearly 70% of phishing attacks were directed at users in Canada, while the majority of attacks come from U.S.-based ISPs and hosting providers.   Zoom zero-day a reminder to stop using Windows 7 Researchers disclosed a newly discovered zero-day vulnerability to videoconferencing service Zoom, which only affects users of Windows 7 systems.   Cybercriminals auction off admin credentials for $3,000 Threat actors are auctioning off domain administrator accounts, selling access to the highest bidder for an average of $3,139 and up to $140,000, according to Digital Shadows.   Data theft in ransomware attacks may change disclosure game Many ransomware attacks aren't publicly disclosed. But as ransomware gangs continue to steal, encrypt and threaten to publicly release data, that may be changing. EXPERT ADVICE   5 steps to help prevent supply chain cybersecurity threats Follow five steps to lower the risk of supply chain cybersecurity threats, from creating third-party risk management teams to using blockchain and hyperledger and more.   Stateful vs. stateless firewalls: Understanding the differences Examine the important differences between stateful and stateless firewalls, and learn when each type of firewall should be used in an enterprise setting.   How cyber warfare laws limit risk on a digital battleground Retired Navy cryptologist implores enterprises to build key cyber warfare laws into their infosec strategy to improve survivability on the digital battleground in his new book.   The future of cyber warfare requires infosec's attention The future of cyber warfare places enterprise security and survivability in the crosshairs. Learn more about cyber warfare threats and capabilities and how infosec can prepare. About This E-Newsletter The Security Digest is published by TechTarget, Inc., 275 Grove Street, Newton, Massachusetts, 02466 US. Click to: Unsubscribe. You are receiving this email because you are a member of TechTarget. When you access content from this email, your information may be shared with the sponsors or future sponsors of that content and with our Partners, see up-to-date Partners List, as described in our Privacy Policy. For additional information, please contact: webmaster@techtarget.com. © 2020 TechTarget, Inc. all rights reserved. Designated trademarks, brands, logos, and service marks are the property of their respective owners. Privacy Policy | Partners List