Security News Update for April 30, 2023
This week’s news includes:
- 3CX cyber attack affected others and started with a job offer scam
- CISA warns about new DDoS amplification attack
- The security implications of GPT’s like ChatGPT, Bard and others
- Google authicator upgraqde and Proton Pass
- Cisco patches devices used in industrial (OT) environments
- Microsoft is rewriting Windows kernel in Rust language
- Feds want a 15 month prison sentence for former Uber CISO for impeding investigation
- The Cooper Davis Act requires messaging services, social media to report users to the DEA
- Small government politicians propose gov-run national databases of all people under 18 – to protect the children
- CISA releases Zero Trust Maturity Model version 2
- San Bernardino County Sheriff struggling to recover from cyberattack
- Minneapolis student psych report and abuse reports leaked by hackers
- AI: productivity gains vs. security risks
- Data retention, minimization and elephant in the room
- The EU is enforcing the Digital Services Act and it might help you
- Security news update for the week ending April 28th, 2023: A couple of annoyed Redditors launched a website to anonymously rate your landlord – what could possibly go wrong, Massachusetts Guardsman leaked classified Ukraine docs a year earlier than thought, NSO Group (Pegasus) spyware still at it, Windows 10 22H2 is the last feature version of Windows 10 and Wikipedia says if UK forces age-checking, they might just block UK users