This Week in Security News: Microsoft Patches 120 Vulnerabilities, Including Two Zero-Days and Trend Micro Brings DevOps Agility and Automation to Security Operations Through Integration with AWS Solutions
August 18, 2020 
0 Comments
Welcome to our weekly roundup, where we share what you need to know about the cybersecurity word and happenings that happened over the past few daytimes. This week, read about one of Microsoft’s largest Patch Tuesday revises ever, including specifies for 120 vulnerabilities and two zero-days. Too, learn about Trend Micro’s brand-new integratings with Amazon Web Assistance( AWS ).
Read on 😛 TAGEND
Microsoft Patches 120 Vulnerability, Two Zero-Days
This week Microsoft exhausted mends for 120 vulnerabilities, including two zero-days, in 13 products and services as part of its monthly Patch Tuesday rollout. The August release commemorates its third-largest Patch Tuesday revise, raising the total number of security gives for 2020 to 862.” If they maintain this pace, it’s quite possible for them to ship more than 1,300 spots this year ,” says Dustin Childs of Trend Micro’s Zero-Day Initiative( ZDI ).
Trend Micro has discovered an uncommon illnes related to Xcode developer projects. Upon further investigation, it was discovered that a developer’s Xcode project at large contained the source malware, which should contribute to a rabbit flaw of malicious payloads. Most conspicuous in our investigation is the discovery of two zero-day manipulates: one is used to steal cookies via a flaw in the behavior of Data Arch, another is used to abuse the development version of Safari.
Top Tips for Home Cybersecurity and Privacy in a Coronavirus-Impacted World: Part 1
We’re all now living in a post-COVID-1 9 life characterized by uncertainty, mass dwelling labouring and remote read. To help you adapt to these new conditions while protecting what matters most, Trend Micro has developed a two-part blog serial on’ the brand-new normal’. Part one identifies the scope and specific cyber-threats of the brand-new regular.
Trend Micro promotes agility and automation in gloom insurance through integrations with Amazon Web Business( AWS ). Through such cooperation, Trend Micro Cloud One offers the broadest platform support and API integration to protect AWS infrastructure whether building with Amazon Elastic Compute Cloud( Amazon EC2) instances, AWS Lambda, AWS Fargate, containers, Amazon Simple Storage Service( Amazon S3 ), or Amazon Virtual Private Cloud( Amazon VPC) networking.
Shedding Light on Security Considerations in Serverless Cloud Architectures
The big switching to serverless computing is imminent. Harmonizing to a 2019 inspection, 21% of enterprises have already adopted serverless technology, while 39% are considering it. Trend Micro’s brand-new investigate on serverless compute aims to shed light on the security considerations in serverless environments and help adopters in keeping their serverless deployments as ensure as is practicable.
In One Click: Amazon Alexa Could be Manipulated for Theft of Voice History, PII, Skill Tampering
Amazon’s Alexa voice assistant could be manipulated to hand over user data due to security vulnerabilities in the service’s subdomains. The smart aide, which is located in inventions such as the Amazon Echo and Echo Dot — with over 200 million shipments worldwide — was vulnerable to attackers trying customer personally identifiable information( PII) and expression recordings.
New Attack Lets Hackers Decrypt VoLTE Encryption to Spy on Phone Calls
A team of academic investigates presented a brand-new attack called’ ReVoLTE ,’ that could made remote attacks separate the encryption used by VoLTE voice calls and spy on targeted phone calls. The assault doesn’t manipulate any breach in the Voice over LTE( VoLTE) etiquette; instead, it leverages poor implementation of the LTE mobile network by most telecommunication providers in practice, earmarking an attacker to snoop on the encrypted phone calls made by targeted victims.
An Advanced Group Specializing in Corporate Espionage is on a Hacking Spree
A Russian-speaking hacking group specializing in corporate espionage has carried out 26 expeditions since 2018 in attempts to steal vast amounts of data from the private sector, according to brand-new conclusions. The hacking radical, dubbed RedCurl, stole confidential corporate documents including contracts, monetary reports, employee records and law records, according to research produced this week by the security house Group-IB.
Walgreens Discloses Data Breach Impacting Personal Health Information of More Than 72,000 Customers
The second-largest pharmacy chain in the U.S. recently disclosed a data infringe that have been able to settlement the personal health information( PHI) of more than 72,000 someones across the United Country. Harmonizing to Walgreens spokesman Jim Cohn, drug knowledge of purchasers was stolen during May affirms, when around 180 of the company’s 9,277 locales were looted.
Top Tips for Home Cybersecurity and Privacy in a Coronavirus-Impacted World: Part 2
The past few months have pictured radical changes to our effort and dwelling life under the Coronavirus threat, upending norms and limiting millions of American families within just four walls. In this context, it’s not astonishing that more of us are spending an increasing portion of our lives online. In the final blog of this two-part series, Trend Micro discusses what you can do to protect your family, your data, and access to your corporate accounts.
What are your thoughts on Trend Micro’s tips to establish your home cybersecurity and privacy stronger in the COVID-1 9-impacted macrocosm? Share your thoughts in the comments below or follow me on Twitter to continue the conversation: @JonLClay .
The post This Week in Security News: Microsoft Patches 120 Vulnerabilities, Including Two Zero-Days and Trend Micro Brings DevOps Agility and Automation to Security Procedure Through Integration with AWS Solutions loomed first on .
Read more: blog.trendmicro.com
