Security in Color Newsletter: #52
Your guide to the latest in cybersecurity
Welcome to the Security in Color Newsletter, a guide on news, events, and resources in the cybersecurity community. Curated and written by Dominique West.
Checking In
Happy Friday Y’all!
We made it to the weekend, shout out to us *high five*. I hope your week went by fast and that you accomplished all the goals you set out to do.
Random fun fact but there are 23 Saturdays left until Christmas. Yes, I am counting lol. Though I am surely going to regret saying this once the cold sets back in and I am complaining again lol.
This week in cyber news we have: A new CISA director confirmed, a bunch of hot-fixes and patches from all kinds of vendors to fix the mess going on lately (Kaseya, Microsoft, Solarwinds anyone?)
In events this week: The Diana Initiative Cyber conference is happening this weekend. Be sure to sign up below. There is also the SANS summit and some other cool technical workshops coming up soon.
Alright, I’m out. Have a good weekend and enjoy the newsletter!
~ Dominique ~
Cybersecurity News
Catch up on the latest technology and cybersecurity news. Links to the latest news below or check out our podcast or blog for a quick, informative, and fun-to-listen summary.
——
New CISA Director Confirmed, White House Gains Cyber-Director
The U.S. has made a key move to shore up its cybersecurity strategy, with the confirmation of Jen Easterly as the director of the Cybersecurity and Infrastructure Security Agency (CISA) on Monday. Easterly, a former official at the National Security Agency from 2011 to 2013 and two-time Bronze Star winner, fills the empty position left by Chris Krebs, who was fired from the post under then-President Trump in 2020. Easterly comes to the role fresh from the private sector: She was most recently responsible for Morgan Stanley’s resilience strategy. Before that, she worked to set up the U.S. Cyber Command.
——
SolarWinds Issues Hotfix for Zero-Day Flaw Under Active Attack
SolarWinds has issued a hotfix for a zero-day remote code execution (RCE) vulnerability already under active, yet limited, attack on some of the company’s customers. Microsoft alerted the company about the flaw, which affects its Serv-U Managed File Transfer Server and Serv-U Secured FTP products. Specifically, the vulnerability exists in the latest Serv-U version 15.2.3 HF1 released on May 5 of this year, as well as all prior versions, the company said in a security advisory posted over the weekend.
——
Kaseya Patches Zero-Days Used in REvil Attacks
The security update addresses three VSA vulnerabilities used by the ransomware gang to launch a worldwide supply-chain attack on MSPs and their customers. Kaseya made good on its promise to issue patches by July 11. On Saturday, the company behind the Virtual System/Server Administrator (VSA) platform that got walloped by the REvil ransomware-as-a-service (RaaS) gang in a massive supply-chain attack released urgent updates to address critical zero-day security vulnerabilities in VSA. Kaseya released the VSA 9.5.7a (9.5.7.2994) update to fix three zero-day vulnerabilities used in the ransomware attacks.
——
CISA Releases Risk Vulnerability Assessment Report for FY2020
In the fiscal year 2020, the Cybersecurity and Infrastructure Security Agency (CISA) conducted a risk assessment of 37 attack techniques across multiple stakeholders in different sectors. These attack techniques were mapped to six successive infection stages in a simple attack pathway using the MITRE ATT&CK framework. The stages identified by CISA include initial access, command and control (C2), lateral movement, privilege escalation, collection, and exfiltration.
——
Cybersecurity Events
Check out the full calendar line-up here and add it directly to your Google Calendar. Have an event you want to be added to? Leave a comment or reply directly to this newsletter.
July
August
8/3: Blackhat Conference ($200 discount code: AP21wsc, courtesy of Women Cyberjutsu)
Support This Newsletter
A very big thank you to every single one of you who has subscribed to this email list and reads this newsletter! If you can spare a couple of $$, please consider contributing to our Patreon (there are perks included!). It helps maintain this newsletter and platform.
You can also send a one-time donation by Buying us a Coffee or via Paypal or Venmo.
Technology Jobs
Go secure that bag! The jobs posted here I have either been directly contacted to post or have come across them in my network. Either way, apply anyway even if you don’t check every box.
Role: Internship - Cyber Security Analyst | Company: SecureApp | Apply here
Role: Entry Level Business Analyst | Company: Agama Solutions Inc | Apply here
Role: Software Support Intern | Company: Tyler Technologies Inc | Apply here
Role: Web Security Product Developer (Entry Level!)| Company: Red Queen Technology | Apply here
Free Resources
Go secure that bag! The jobs posted here I have either been directly contacted to post or have come across them in my network. Either way, apply anyway even if you don’t check every box.
Code Next: Free online computer science education program for Black, Latinx, & Native+ students
Free Incident Response Training Plan (Courtesy of DFIR Diva)
Thread of Free and Affordable Resources (Courtesy of DFIR Diva)
Web Application Security, Pen-testing, and Red Team Cheatsheet
Suggestions?
Have something you want to contribute to the next newsletter? Know of a way to improve this newsletter for our audience? Feel free to provide us some feedback here or leave a comment below.
Thanks, Dominique, and congrats! FYI, I posted this at https://www.linkedin.com/groups/8469327/