Welcome to the Security in Color Newsletter, a guide on news, events, and resources in the cybersecurity community. Curated and written by Dominique West.
Checking In
*In my best Kawhi Leonard voice* What it do baybeeee?!
Happy Friday everyone!
I hope you are doing good, smelling good, looking good, and of course - being safe.
Kind of slow in the news realm but some interesting stuff has happened lately (Accenture ransomware, anyone?). There are a bunch of upcoming events, though, so be sure to check them out and the free resource section.
Alright, I’m out. Have a good weekend and enjoy the newsletter!
~ Dominique ~
P.S - Do you know someone awesome in cybersecurity? Nominate them for the upcoming Women’s Cyberjutsu Awards where we recognize amazing contributors in the cyber space. Nominate them here
Cybersecurity News
Catch up on the latest technology and cybersecurity news. Links to the latest news below or check out our podcast or blog for a quick, informative, and fun-to-listen summary.
——
Accenture Consulting Firm Hit with Ransomware Attack
Ransomware hackers began leaking Accenture data after the consulting giant suffered a security incident where the perpetrators made off with client-related documents and work materials.
The gang, known as LockBit 2.0, has threatened to leak further after providing purported proof of the breach. Accenture acknowledged the attack on Wednesday, but has downplayed its severity.
——
With the use of QR codes rising, so, too, are the numbers of scams that aim to take advantage of them. Researchers warned that threat actors are going so far as to send potential victims to gas stations to use Bitcoin ATMs in their endeavors to exploit the technology.
The Better Business Bureau (BBB) also warned recently that consumers should watch out for a growing list of scams using QR codes — which are appearing everywhere these days as a simple and contactless way to share information.
——
Scaling Automated Disinformation for Misery and Profit
Researchers recently demonstrated the weaponization of deep neural networks that can be used to shape public opinion, enrage people on Twitter and possibly spark QAnon 2.0.
Cybersecurity Events
Check out the full calendar line-up here and add it directly to your Google Calendar. Have an event you want to be added to? Leave a comment or reply directly to this newsletter.
August
8/13: Hack the Box Walkthrough with BlackGirlsHack
8/15: Handling Software Architecture Shifts by OWASP DevSlop
8/18: Identity & Access Management (IAM) 101 by CSNP
8/20: How to do Code Review - The Offensive Security Way by OWASP DevSlop
8/20: Lunch and Learn - MicroFocus Recruitment AMA with BlackGirlsHack
8/25: System Log Analysis for Beginners by CSNP
8/27: Threat Emulation with Duane Dunston hosted by BlackGirlsHack
8/29: Footprinting Workshop with Ankit Pandley hosted by BlackGirlsHack
September
9/29: Malware Detection with YARA Rules by CSNP
Support This Newsletter
A very big thank you to every single one of you who has subscribed to this email list and reads this newsletter! If you can spare a couple of $$, please consider contributing to our Patreon (there are perks included!). It helps maintain this newsletter and platform.
You can also send a one-time donation by Buying us a Coffee or via Paypal or Venmo.
Technology Jobs
Go secure that bag! The jobs posted here I have either been directly contacted to post or have come across them in my network. Either way, apply anyway even if you don’t check every box.
Role: Information Security Analyst - Remote | Company: Optum | Apply here
Role: IT Security Compliance Analyst | Company: Corporate Brokers | Apply here
Role: IT Security Compliance Analyst | Company: Foot locker | Apply here
Role: Information Security Analyst | Company: Associate Staffing | Apply here
Free Resources
Go secure that bag! The jobs posted here I have either been directly contacted to post or have come across them in my network. Either way, apply anyway even if you don’t check every box.
Code Next: Free online computer science education program for Black, Latinx, & Native+ students
Free Incident Response Training Plan (Courtesy of DFIR Diva)
Thread of Free and Affordable Resources (Courtesy of DFIR Diva)
Web Application Security, Pen-testing, and Red Team Cheatsheet
Free Azure exam voucher if you have a .mil account (military, gov employee, contractor)
Suggestions?
Have something you want to contribute to the next newsletter? Know of a way to improve this newsletter for our audience? Feel free to provide us some feedback here or leave a comment below.