Follow Natsar on LinkedIn to catch every post as it goes live.

IN THIS WEEKLY DIGEST

• Getting Started with Configuration Management and System Hardening

• Check out our free on-demand course to earn continuing education: Introduction to Configuration Management and System Hardening

• Top cybersecurity news stories for the week from around the world

NATSAR’S POSTS THIS WEEK

Why creating standardized, secure system images is essential for protecting your organization from cyber threats.

CONTINUING EDUCATION

Want to earn Continuing Professional Education (CPE) credits? Visit https://store.natsar.com/intro-config-mgmt-system-hardening to watch the same video as below for free and receive a certificate of attendance, which can be used to fulfill continuing education requirements for cybersecurity certifications.

CYBERSECURITY NEWS

Here are this week's major cybersecurity updates from around the world.

• Cloak ransomware group claims responsibility for a February cyberattack on the Virginia Attorney General’s Office. Read more

• A new phishing scam targets Instagram business accounts with fake chatbots and support emails to steal login credentials. Read more

• The FCC’s new Council on National Security will launch a sweeping probe into Chinese-made equipment in U.S. telecom infrastructure. Read more

• Over 500,000 individuals had personal data stolen in a breach impacting the Pennsylvania State Education Association. Read more

• Amazon is discontinuing a privacy feature that let Echo users block voice commands from reaching its cloud. Read more

• A supply-chain attack compromised 100+ car dealership websites, aiming to infect visitor PCs, says a security researcher. Read more

• A server-side request forgery flaw in OpenAI's chatbot setup could let attackers redirect users to malicious URLs. Read more

• Lawmakers reintroduce a bipartisan bill to bolster cybersecurity for small water and wastewater utilities. Read more

Have a topic you’d like us to cover? Leave a comment let us know!

Share Natsar Cyber Insights

Follow Natsar on LinkedIn to catch every post as it goes live.

IN THIS WEEKLY DIGEST

• Top cybersecurity news stories for the week from around the world

CYBERSECURITY NEWS

Here are this week's major cybersecurity updates from around the world.

• Cloak ransomware group claims responsibility for a February cyberattack on the Virginia Attorney General’s Office. Read more

• A new phishing scam targets Instagram business accounts with fake chatbots and support emails to steal login credentials. Read more

• The FCC’s new Council on National Security will launch a sweeping probe into Chinese-made equipment in U.S. telecom infrastructure. Read more

• Over 500,000 individuals had personal data stolen in a breach impacting the Pennsylvania State Education Association. Read more

• ISPs worldwide report outages linked to DrayTek router issues that began Saturday night, affecting connectivity. Read more

• Microsoft adds inline data protection to Edge for Business to block sensitive data sharing with GenAI apps like ChatGPT, Gemini, and DeepSeek. Read more

• Amazon is discontinuing a privacy feature that let Echo users block voice commands from reaching its cloud. Read more

• A server-side request forgery flaw in OpenAI’s chatbot setup could let attackers redirect users to malicious URLs. Read more

Have a topic you’d like us to cover? Leave a comment let us know!

Share Natsar Cyber Insights

Follow Natsar on LinkedIn to catch every post as it goes live.

IN THIS WEEKLY DIGEST

• Protect Your Network from Cyberattacks with Segmentation Strategies

• Check out our free on-demand course to earn continuing education: EXIF in Focus: Unlocking Metadata for Digital Investigations

• Top cybersecurity news stories for the week from around the world

NATSAR’S POST THIS WEEK

Why Flat Networks Are a Security Risk and How Segmentation Enhances Cyber Defenses

CONTINUING EDUCATION

Want to earn Continuing Professional Education (CPE) credits? Visit https://store.natsar.com/unlocking-exif-data to watch the same video as below for free and receive a certificate of attendance, which can be used to fulfill continuing education requirements for cybersecurity certifications.

CYBERSECURITY NEWS

Here are this week's major cybersecurity updates from around the world.

• Denmark warns of increased state-sponsored cyber threats targeting European telecoms, raising the sector’s threat level to high. Read more

• A phishing campaign targets 12K GitHub repositories with fake security alerts, tricking developers into authorizing a malicious OAuth app. Read more

• Medusa ransomware is expanding, targeting critical sectors like healthcare, tech, manufacturing, and insurance while adding more affiliates. Read more

• Over 100 auto dealership websites were compromised, serving malicious ClickFix code in a supply chain attack. Read more

• A bipartisan Senate bill aims to strengthen cybersecurity for small water and wastewater utilities, reviving stalled legislation. Read more

• A misconfigured database exposed 108.8GB of sensitive data, impacting over 86,000 healthcare workers. Read more

• The Vermont Senate passes the Vermont AADC, aiming to protect kids’ privacy and curb manipulative online practices. The bill now moves to the House. Read more

Have a topic you’d like us to cover? Leave a comment let us know!

Share Natsar Cyber Insights

Follow Natsar on LinkedIn to catch every post as it goes live.

IN THIS WEEKLY DIGEST

• The Truth About VPNs for Privacy and Security Online

• VPNs and Beyond - How to Protect Remote Access Without Compromising Security

• Check out our free on-demand course to earn continuing education: EXIF in Focus: Unlocking Metadata for Digital Investigations

• Top cybersecurity news stories for the week from around the world

NATSAR’S POSTS THIS WEEK

VPNs promise online anonymity and security, but do they really deliver? Here’s what you need to know about using a VPN for privacy protection.

Understanding the Risks of Remote Access and the Future of Secure Connectivity

CONTINUING EDUCATION

Want to earn Continuing Professional Education (CPE) credits? Visit https://store.natsar.com/unlocking-exif-data to watch the same video as below for free and receive a certificate of attendance, which can be used to fulfill continuing education requirements for cybersecurity certifications.

CYBERSECURITY NEWS

Here are this week's major cybersecurity updates from around the world.

• Toronto Zoo confirms its January 2024 cyberattack exposed visitor data dating back to 2000. Read more

• China-backed threat group Silk Typhoon (APT27) expanded attacks in late 2024, exploiting stolen API keys to target government and IT networks. Read more

• The House passes a bill requiring federal contractors to implement a Vulnerability Disclosure Policy (VDP). Read more

• YouTube CEO Neal Mohan was impersonated in a deepfake phishing scam. Learn how the attack worked and how to spot the signs. Read more

• Apple is challenging a UK order to weaken iCloud encryption in a first-of-its-kind legal case set to be heard this month. Read more

• A House panel advances a bill to strengthen U.S. telecom cybersecurity, establishing a cyber-focused office within NTIA. Read more

• Cofense uncovers a LinkedIn phishing scam delivering ConnectWise RAT, bypassing security with fake InMail emails. Read more

Have a topic you’d like us to cover? Leave a comment let us know!

Share Natsar Cyber Insights

Follow Natsar on LinkedIn or X to catch every post as it goes live.

IN THIS WEEKLY DIGEST

• Introduction to Defense in Depth: A Layered Approach to Cybersecurity

• Check out our free on-demand course to earn continuing education: Introduction to Defense in Depth and Secure Network Design

• Top cybersecurity news stories for the week from around the world

• Natsar’s featured product: Testimony Evaluation Form

NATSAR’S POSTS THIS WEEK

Why a Single Security Measure Isn’t Enough—How Layered Defenses Protect Against Modern Cyber Threats.

CONTINUING EDUCATION

Want to earn Continuing Professional Education (CPE) credits? Visit https://store.natsar.com/introduction-to-defense-in-depth-and-secure-network-design to watch the same video as below for free and receive a certificate of attendance, which can be used to fulfill continuing education requirements for cybersecurity certifications.

CYBERSECURITY NEWS

Here are this week's major cybersecurity updates from around the world.

• A botnet of 130K devices is password-spraying Microsoft 365, bypassing MFA by exploiting legacy authentication. Read more

• OpenAI bans ChatGPT accounts linked to Chinese threat actors using AI for spying tool development. Read more

• New info-stealing malware, ACRStealer, exploits platforms like Google Docs and Steam for attacks. Read more

• Leaked Black Basta chat logs reveal key intel on the ransomware group’s tools, tactics, and affiliates. Defenders gain insight into their operations. Read more

• South Korea bans an AI chatbot after confirming it sent data to TikTok’s China-based parent. DeepSeek’s safety is under scrutiny again. Read more

• Apple removes Advanced Data Protection in the UK after a dispute over law enforcement access, limiting end-to-end encryption for iCloud users. Read more

• The U.S. is falling behind adversaries in cyberspace, warns ex-Cyber Command & NSA chief. Threat actors are expanding their capabilities. Read more

FEATURED PRODUCT - TESTIMONY EVALUATION FORM

At the conclusion of a forensic analyst's testimony, it is important to gain feedback from the court. Having a supervisor observe an analyst is effective to some degree, but getting direct feedback from attorneys and judges on the quality of testimony is exceptionally valuable. Written with ISO 17025 in mind, this form should be part of any digital forensic lab's quality system.

Pick up your copy here: https://store.natsar.com/testimony-evaluation-form

Have a topic you’d like us to cover? Leave a comment let us know!

Share Natsar Cyber Insights

Follow Natsar on LinkedIn or X to catch every post as it goes live.

IN THIS WEEKLY DIGEST

• Network Security Fundamentals: Firewalls, IDPS, and Zero Trust

• The Importance of DNS Security in Cyber Defense

• Check out our free on-demand course to earn continuing education: Introduction to Defense in Depth and Secure Network Design

• Top cybersecurity news stories for the week from around the world

• Natsar’s featured product: Cybersecurity Incident Response Plan

NATSAR’S POSTS THIS WEEK

From Firewalls to Zero Trust—Critical Layers for Protecting Your Network

From DNS spoofing to cache poisoning, cybercriminals target DNS to gain access to your network. Here’s how to strengthen your defenses.

CONTINUING EDUCATION

Want to earn Continuing Professional Education (CPE) credits? Visit https://store.natsar.com/introduction-to-defense-in-depth-and-secure-network-design to watch the same video as below for free and receive a certificate of attendance, which can be used to fulfill continuing education requirements for cybersecurity certifications.

CYBERSECURITY NEWS

Here are this week's major cybersecurity updates from around the world.

• Dutch police seized 127 servers from bulletproof host Zservers/XHost after the US, UK, and Australia sanctioned its Russian operators for aiding LockBit ransomware. Read more

• Chase will block Zelle payments to social media contacts to curb rising online scams exploiting the service for fraud. Read more

• A new XCSSET macOS malware variant targets sensitive data, including digital wallets and the Notes app. Read more

• Netskope Threat Labs uncovered a Golang-based backdoor using Telegram for C2, exploiting cloud apps to evade detection. Experts suspect a Russian origin. Read more

• Microsoft is deprecating the Windows Location History feature, which allowed apps like Cortana to access device location data. Read more

• Finastra is notifying victims of a data breach after attackers stole personal data following an October 2024 system breach. Read more

FEATURED PRODUCT - CYBER INCIDENT RESPONSE PLAN

This 28-page customizable Word document is a complete Incident Response (IR) plan for an organization and based on the NIST Cybersecurity Framework. This plan has been used across the country and for multiple organizations with great success and meets standards and best practices including NIST, CIS Critical Security Controls, ISO, and others.

Pick up your copy here: https://store.natsar.com/cybersecurity-incident-response-plan-natsar

Have a topic you’d like us to cover? Leave a comment let us know!

Share Natsar Cyber Insights

Follow Natsar on LinkedIn or X to catch every post as it goes live.

IN THIS WEEKLY DIGEST

• This weekly digest is dedicated to helping those who are looking for work in light of the recent changes being made in the federal government.

• Check out our free on-demand course to earn continuing education: Introduction to Defense in Depth and Secure Network Design

• Top cybersecurity news stories for the week from around the world

• Natsar’s featured product - Free Resume Template

NATSAR’S POSTS THIS WEEK

We created a five-part series on navigating career transitions. Although it was written due to the thousands of federal employees and contractors finding themselves without a job almost overnight, these tips are helpful for anyone looking for help on navigating a career change.

Navigating Career Transitions | Part 1: A Guide for Federal Employees and Contractors Affected by Recent Policy Changes

Navigating Career Transitions | Part 2: Crafting a Resume That Gets Noticed and Passes Applicant Tracking Systems

Navigating Career Transitions | Part 3: Your Roadmap to Job Search Success and Using AI to Supercharge Your Job Search

Navigating Career Transitions | Part 4: Best Practices for Virtual and In-Person Success

Navigating Career Transitions | Part 5: Bringing It All Together ‒ Navigating the Hiring Process

CONTINUING EDUCATION

Want to earn Continuing Professional Education (CPE) credits? Visit https://store.natsar.com/introduction-to-defense-in-depth-and-secure-network-design to watch the same video as below for free and receive a certificate of attendance, which can be used to fulfill continuing education requirements for cybersecurity certifications.

CYBERSECURITY NEWS

Here are this week's major cybersecurity updates from around the world.

• AI startup Zyphra unveils open TTS models that clone voices with just 5 seconds of audio. Tests show realistic results with under 30 seconds of speech. Read more

• An active cyber threat linked to Russia targets Microsoft 365 accounts using device code phishing to breach organizations of interest. Read more

• Google is adding a new Android security feature to block changes to sensitive settings during calls, preventing app installs from unknown sources and unauthorized accessibility access. Read more

• Senator Ron Wyden plans legislation to strengthen privacy protections after reports that the UK pushed Apple to bypass iCloud encryption. The proposal aims to reform the CLOUD Act. Read more

• China’s SaltTyphoon hackers continue targeting global telecoms, breaching U.S. providers via unpatched Cisco IOS XE devices. Read more

• A cyberattack hits the Virginia Attorney General’s Office, taking most computer systems offline. Investigations are underway as courts provide paper filing alternatives. Read more

• A bipartisan group urges DNI Tulsi Gabbard to reassess U.S.-UK cybersecurity ties after reports that the UK ordered Apple to backdoor encrypted iCloud backups. Read more

• Zacks Investment Research suffered another data breach, exposing sensitive info from 12 million accounts. Read more

• The U.S. Coast Guard is urged to strengthen cybersecurity in the Maritime Transportation System, which moves $5.4T in goods yearly. Read more

• Lee Enterprises, a major U.S. newspaper chain, reports a cyberattack causing operational disruptions. Investigation ongoing; no material impact identified yet. Read more

FEATURED PRODUCT - FREE RESUME TEMPLATE

As part of our career transition series, we have developed a resume template that is freely available here.

Have a topic you’d like us to cover? Leave a comment let us know!

Share Natsar Cyber Insights

Follow Natsar on LinkedIn or X to catch every post as it goes live.

In This Weekly Digest:

• Risk Assessments for Cybersecurity: Frameworks, Insights, and Best Practices

• Managing Cyber Risk Effectively: Tracking, Reporting, and Executive Buy-In

• Check out our free on-demand course to earn continuing education: Introduction to Cybersecurity Risk Management: A Practical Primer

• Top cybersecurity news stories for the week from around the world

• Natsar’s featured product - Cybersecurity Incident Response Collection List - Log Analysis

NATSAR’S POSTS THIS WEEK

Explore essential cybersecurity risk assessment frameworks, key sources of risk, and actionable best practices to help your organization prioritize and mitigate threats effectively.

Learn how to track, prioritize, and report cybersecurity risks using risk registers, POA&Ms, and effective communication strategies to secure executive buy-in.

CONTINUING EDUCATION

Want to earn Continuing Professional Education (CPE) credits? Visit https://store.natsar.com/intro-cyber-risk-mgmt-primer to watch the same video as below for free and receive a certificate of attendance, which can be used to fulfill continuing education requirements for cybersecurity certifications.

Explore the foundational principles of cybersecurity risk management in this informative on-demand course by Josh Moulin, Principal at Natsar. As cyber threats grow more frequent and sophisticated, understanding and managing risks is essential for organizations of all sizes. This video is perfect for cybersecurity professionals, students, and decision-makers looking to strengthen their security posture and mitigate vulnerabilities or just learn the basics of cybersecurity risk management.

CYBERSECURITY NEWS

Here are this week's major cybersecurity updates from around the world.

• SpanishPolice arrest suspected hacker in Alicante for 40 alleged cyberattacks on GuardiaCivil, DefenseMinistry, NATO, USArmy and multiple universities. Read more

• Fraud groups leverage cutting-edge tech to scale operations, create fake identities, and execute fraud campaigns. Read more

• AWS S3 bucket names are global and predictable, making them vulnerable to Namesquatting attacks. Varonis explains how these attacks work and ways to prevent them. Read more

• Malware campaign delivers AsyncRAT via Python payloads and TryCloudflare tunnels, enabling remote access threats. Read more

• Virginia Senate passes bill banning the sale of precise GeolocationData. Sen. Russet Perry warns data brokers enable fraudsters to exploit personal info, stressing the need for privacy protection. Read more

• Chinese Hacking group hijacks SSH daemon on network appliances, injecting malware for persistent access and covert ops. Read more

FEATURED PRODUCT - CIRT COLLECTION LIST - LOG ANALYSIS

Log files are one of the most valuable sources of information during a cybersecurity incident response investigation and knowing what log files to get (or what is available) may be challenging. This checklist can be given to IT staff and external managed service providers to obtain logs requested by the IR team.

Get your copy today at https://store.natsar.com/cybersecurity-incident-response-collection-list-log-analysis

Have a topic you’d like us to cover? Leave a comment let us know!

Share Natsar Cyber Insights

Follow Natsar on LinkedIn or X to catch every post as it goes live.

In This Weekly Digest:

• Practical Patch and Vulnerability Management Strategies for Cybersecurity Risk Management

• Managing Risk in Complex Cyber Environments

• Check out our free on-demand course to earn continuing education: Introduction to Cybersecurity Risk Management: A Practical Primer

• Top cybersecurity news stories for the week from around the world

• Natsar’s featured product - Incident Response Engagement Scoping Form

NATSAR’S POSTS THIS WEEK

Actionable strategies for identifying, prioritizing, and addressing vulnerabilities to reduce cybersecurity risks.

Explore strategies to safeguard cloud services, IoT, mobile devices, and sensitive data in today’s expanding cyber landscape.

CONTINUING EDUCATION

Want to earn Continuing Professional Education (CPE) credits? Visit https://store.natsar.com/intro-cyber-risk-mgmt-primer to watch the same video as below for free and receive a certificate of attendance, which can be used to fulfill continuing education requirements for cybersecurity certifications.

Explore the foundational principles of cybersecurity risk management in this informative on-demand course by Josh Moulin, Principal at Natsar. As cyber threats grow more frequent and sophisticated, understanding and managing risks is essential for organizations of all sizes. This video is perfect for cybersecurity professionals, students, and decision-makers looking to strengthen their security posture and mitigate vulnerabilities or just learn the basics of cybersecurity risk management.

CYBERSECURITY NEWS

Here are this week's major cybersecurity updates from around the world.

• NCC Group reported over 570 ransomware attacks in December 2024, the highest monthly total since monitoring began in 2021. Read more

• New York State reached a $2M settlement with PayPal for failing to comply with cybersecurity regulations, contributing to a 2022 data breach. Read more

• A Subaru Starlink vulnerability exposed vehicles and customer accounts in the US, Canada, and Japan to remote attacks. Read more

• An unidentified actor has been quietly backdooring selected Juniper routers globally, targeting key sectors like semiconductors, energy, and manufacturing since mid-2023. Read more

• Cybersecurity researchers uncovered 270,000+ lines of American National Insurance customer data leaked online, possibly tied to a 2023 breach. Read more

• Microsoft announced its brand impersonation protection for Teams Chat will roll out to all Microsoft 365 customers by mid-February 2025. Read more

• The Change Healthcare ransomware-caused data breach impact has grown, now affecting 190 million individuals, up from the initial 100 million. Read more

• Four decades of student and educator data were stolen in a PowerSchool breach, potentially affecting tens of millions. Read more

• UK telecom company TalkTalk is investigating a third-party supplier breach after alleged customer data was listed for sale on a hacking forum. Read more

• SOC analysts face constant challenges, triaging thousands of alerts daily to find real threats. Alert fatigue and false positives increase risks, demanding 24/7 vigilance. Read more

FEATURED PRODUCT - RISK REGISTER

Natsar’s Risk Register Template helps organizations track and manage risks with a clear, structured approach. This customizable tool enables you to define mitigation strategies, assign ownership, and calculate threat levels based on likelihood and impact. Trusted by organizations worldwide, it’s a proven solution for effective risk management.

Get your copy today at https://store.natsar.com/risk-register

Have a topic you’d like us to cover? Leave a comment let us know!

Share Natsar Cyber Insights

Follow Natsar on LinkedIn or X to catch every post as it goes live.

In This Weekly Digest:

• Navigating Politics in Cybersecurity Risk Management

• Cybersecurity Essentials: How Threats, Vulnerabilities, and Exposures Impact Risk

• Check out our free on-demand course to earn continuing education: Introduction to Cybersecurity Risk Management: A Practical Primer

• Top cybersecurity news stories for the week from around the world

• Natsar’s featured product - Incident Response Engagement Scoping Form

NATSAR’S POSTS THIS WEEK

Understanding the political landscape is key to implementing effective cybersecurity risk management. Learn how to navigate competing priorities, secure executive buy-in, and overcome resistance to ensure your strategies succeed.

Cybersecurity risk is shaped by the interplay between threats, vulnerabilities, and exposures. Understanding how these components interact is key to developing an effective strategy for managing and reducing risk.

CONTINUING EDUCATION

Want to earn Continuing Professional Education (CPE) credits? Visit https://store.natsar.com/intro-cyber-risk-mgmt-primer to watch the same video as below for free and receive a certificate of attendance, which can be used to fulfill continuing education requirements for cybersecurity certifications.

Explore the foundational principles of cybersecurity risk management in this informative on-demand course by Josh Moulin, Principal at Natsar. As cyber threats grow more frequent and sophisticated, understanding and managing risks is essential for organizations of all sizes. This video is perfect for cybersecurity professionals, students, and decision-makers looking to strengthen their security posture and mitigate vulnerabilities or just learn the basics of cybersecurity risk management.

CYBERSECURITY NEWS

Here are this week's major cybersecurity updates from around the world.

• Texas AG Ken Paxton sued Allstate and its subsidiary Arity for allegedly unlawfully collecting, using, and selling driving data from over 45 million Americans. Read more

• Users entering sensitive data like customer info, source code, and financial details into AI tools like ChatGPT and Copilot pose significant risks to enterprises. Read more

• Cyberattacks on hospitals are rising, causing disruptions, canceled procedures, and eroding patient trust. These incidents expose critical healthcare vulnerabilities. Read more

• The FTC requires GoDaddy to adopt HTTPS APIs and mandatory multi-factor authentication to address security failures dating back to 2018. Read more

• The US Department of Commerce bans importing connected vehicle components from China and Russia, citing national security concerns. Read more

• New Phishing-as-a-Service targets Microsoft 365, using advanced evasion techniques and Telegram to steal credentials. A serious threat to users. Read more

• The New Jersey Data Privacy Law, effective Jan. 15, closes key loopholes seen in other state laws. Rulemaking by the Attorney General will continue through 2025. Read more

• In 2024, 585 healthcare data breaches were reported to the US government, exposing nearly 180 million user records. Read more

FEATURED PRODUCT - IR ENGAGEMENT SCOPING FORM

Rapidly assess the scope of a cyberattack and the victim's network, resources, and extent of condition before assigning an IR team to respond to an incident.

Get your copy today at https://store.natsar.com/cybersecurity-incident-response-engagement-scoping-form

Have a topic you’d like us to cover? Leave a comment let us know!

Share Natsar Cyber Insights

Follow Natsar on LinkedIn or X to catch every post as it goes live.

In This Weekly Digest:

• Understanding the CIA Triad and Its Role in Managing Cyber Risks

• Prioritize, Protect, Prevail: The Role of Risk Management in Cybersecurity

• Final Critical Infrastructure (CI) Series, Post 6: Cybersecurity as a National Security Issue

• Check out our free on-demand course to earn continuing education: Introduction to Cybersecurity Risk Management: A Practical Primer

• Top cybersecurity news stories for the week from around the world

• Natsar’s featured product - risk register template

NATSAR’S POSTS THIS WEEK

Explore how the CIA Triad—Confidentiality, Integrity, and Availability—serves as a cornerstone in effective cybersecurity risk management.

The key to navigating today’s complex cybersecurity landscape isn’t just about investing in the latest tools; it’s about adopting a risk-based approach that focuses on what matters most.

Why Cybersecurity is Critical to National Defense and How Organizations Can Strengthen Collective Security

CONTINUING EDUCATION

Want to earn Continuing Professional Education (CPE) credits? Visit https://store.natsar.com/intro-cyber-risk-mgmt-primer to watch the same video as below for free and receive a certificate of attendance, which can be used to fulfill continuing education requirements for cybersecurity certifications.

Explore the foundational principles of cybersecurity risk management in this informative on-demand course by Josh Moulin, Principal at Natsar. As cyber threats grow more frequent and sophisticated, understanding and managing risks is essential for organizations of all sizes. This video is perfect for cybersecurity professionals, students, and decision-makers looking to strengthen their security posture and mitigate vulnerabilities or just learn the basics of cybersecurity risk management.

CYBERSECURITY NEWS

Here are this week's major cybersecurity updates from around the world.

• GOP leaders on the House Homeland Security Committee are urging a GAO review of TSA’s use of AI and biometric tech to ensure security measures don't infringe on civil liberties. Read more

• A major education software provider suffered a cyberattack, exposing personal data of students and teachers, including Social Security Numbers and medical info. Over 60M people may be affected. Read more

• The ICAO, the UN aviation agency responsible for air safety, was hacked again. A hacker is now selling personal data from 42,000 job applicants. Read more

• Microsoft is taking legal action against a foreign-based hacking-as-a-service group accused of bypassing safety controls in its generative AI to create harmful content. Read more

• CISA reports a 201% surge in Cyber Hygiene enrollment by critical infrastructure groups over two years, led by the communications, emergency services, manufacturing, and water sectors. Read more

• Chinese cyber-spies behind the US Treasury breach also stole documents from officials investigating real estate deals near U.S. military bases, raising security concerns. Read more

• Docker warns that Docker Desktop isn't starting on macOS due to malware alerts caused by files signed with an incorrect code-signing certificate. A fix is underway. Read more

• Fortinet is warning of a phishing campaign that exploits legitimate links to hijack victims' PayPal accounts, posing a serious threat to users. Read more

FEATURED PRODUCT - RISK REGISTER

Get your copy today at https://store.natsar.com/risk-register

Have a topic you’d like us to cover? Leave a comment let us know!

Share Natsar Cyber Insights

Follow Natsar on LinkedIn or X to catch every post as it goes live.

In This Weekly Digest:

• Using a SAN or NAS to Store Digital Evidence

• Critical Infrastructure Series Post 5: Real-World Case Studies

• Online Scams Series Part 3 (Final): What to do if You Think You’ve Been Scammed

• Check out our free on-demand course to earn continuing education: Introduction to Cybersecurity Risk Management: A Practical Primer

• Top cybersecurity news stories for the week from around the world

• Natsar’s featured product - digital forensics lab document bundle

NATSAR’S POSTS THIS WEEK

Discover how SAN and NAS solutions can transform forensic labs by providing scalable storage and streamlining workflows—but only when implemented correctly. This post explores best practices for secure usage, preventing cross-contamination, and ensuring compliance in evidence management.

Explore real-world cyberattacks on critical infrastructure—from the Colonial Pipeline ransomware incident to the Triton malware targeting safety systems—and uncover critical lessons in cybersecurity. This post provides actionable insights on preventing similar attacks by focusing on MFA, network segmentation, phishing defense, and incident response.

Online scams are becoming increasingly sophisticated, and even the most cautious individuals can fall victim. This post offers a step-by-step guide to help you act quickly, limit damage, and secure your information if you’ve been scammed. Learn how to protect your identity, report the fraud, and prevent future incidents.

CONTINUING EDUCATION

Want to earn Continuing Professional Education (CPE) credits? Visit https://store.natsar.com/intro-cyber-risk-mgmt-primer to watch the same video as below for free and receive a certificate of attendance, which can be used to fulfill continuing education requirements for cybersecurity certifications.

Explore the foundational principles of cybersecurity risk management in this informative on-demand course by Josh Moulin, Principal at Natsar. As cyber threats grow more frequent and sophisticated, understanding and managing risks is essential for organizations of all sizes. This video is perfect for cybersecurity professionals, students, and decision-makers looking to strengthen their security posture and mitigate vulnerabilities or just learn the basics of cybersecurity risk management.

CYBERSECURITY NEWS

Here are this week's major cybersecurity updates from around the world.

• China-linked group Salt Typhoon has reportedly targeted more US telecoms than previously known, including Charter Communications and Windstream, exploiting Cisco and Fortinet device vulnerabilities. Read more

• Scammers stole $494 million in cryptocurrency last year through wallet drainer attacks, compromising over 300,000 wallet addresses. The growing threat to digital assets continues. Read more

• 'FireScam,' a new Android malware, is posing as a premium Telegram app on phishing websites hosted on GitHub. The sites mimic RuStore, Russia’s official mobile app market. Read more

• New Eagerbee malware variants are targeting government agencies and ISPs in the Middle East, posing significant cybersecurity risks. Read more

• Modern cars often store sensitive data from cell phone syncing, including your location history, contacts, call logs, texts, and more—raising serious privacy concerns. Read more

• The US Treasury has sanctioned Chinese company Integrity Technology for aiding state-sponsored group Flax Typhoon in cyberattacks targeting US critical infrastructure. Read more

• Starting in 2025, healthcare organizations will face stricter cybersecurity rules. However, many may struggle to meet the new standards due to limited budgets. Read more

FEATURED PRODUCT - DIGITAL FORENSICS BUNDLE

Take your digital forensics lab to the next level with Natsar’s Digital Forensics Document Bundle. This comprehensive collection of customizable forms and policies is designed to help you streamline lab operations, ensure compliance with ISO 17025 and other industry standards, and maintain the highest level of professionalism. Whether you're setting up a new lab or enhancing your current processes, this bundle includes everything you need to boost efficiency, save time, and stay ahead with regularly updated documents. Get all your forensic essentials in one convenient package!

Save over 40% by Natsar's digital forensic resources! Save even more by buying our on-demand masterclass on managing a digital forensics lab.

Get your copy today at https://store.natsar.com/digital-forensics-document-bundle

Have a topic you’d like us to cover? Leave a comment let us know!

Share Natsar Cyber Insights

Follow Natsar on LinkedIn or X to catch every post as it goes live.

In This Weekly Digest:

• Read our fourth post in our critical infrastructure cybersecurity series - this post focuses on the attack kill chain and how to defend CI from cyberattacks.

• Read our post about the hidden risks of BYOD

• Another no-cost on-demand course to earn continuing education: Introduction to Cybersecurity Risk Management: A Practical Primer

• Top cybersecurity news stories for the week from around the world

• Natsar’s featured product - incident response bundle

NATSAR’S POSTS THIS WEEK

BYOD can boost flexibility and reduce costs—but at what risk? Learn from a real-world risk assessment for a federal agency and explore the hidden pitfalls of BYOD programs, from privacy concerns to legal and forensic challenges. This post dives deep into key considerations and offers practical advice to help organizations decide if BYOD is the right fit for them.

Cyberattacks follow a predictable path, but understanding the kill chain can help organizations stay one step ahead. In this post, I break down each stage of the attack kill chain and share actionable strategies to disrupt attackers before they succeed. Learn how early detection and a layered defense strategy can protect critical infrastructure from evolving cyber threats.

CONTINUING EDUCATION

Want to earn Continuing Professional Education (CPE) credits? Visit https://store.natsar.com/intro-cyber-risk-mgmt-primer to watch the same video for free and receive a certificate of attendance, which can be used to fulfill continuing education requirements for cybersecurity certifications.

Explore the foundational principles of cybersecurity risk management in this informative on-demand course by Josh Moulin, Principal at Natsar. As cyber threats grow more frequent and sophisticated, understanding and managing risks is essential for organizations of all sizes. This video is perfect for cybersecurity professionals, students, and decision-makers looking to strengthen their security posture and mitigate vulnerabilities or just learn the basics of cybersecurity risk management.

CYBERSECURITY NEWS

Here are this week's major cybersecurity updates from around the world.

• A cyberattack on Japan Airlines disrupted systems and ticket sales by disabling a router. Read more

• China-linked threat actors breached the U.S. Treasury via a compromised BeyondTrust remote support platform, discovered on Dec 8. Read more

• Over three million POP3 and IMAP mail servers lack TLS encryption, leaving them exposed to network sniffing attacks. Read more

• Hackers targeting Rhode Island's health and benefits system have released stolen files on the dark web, raising security concerns. Read more

• AI tools promise productivity gains but will also heighten privacy, governance, and security risks for organizations in the year ahead. Read more

• On Dec 27, 2024, HHS proposed updates to the HIPAA Security Rule to enhance ePHI cybersecurity, aligning with the Biden Administration’s National Cybersecurity Strategy. Read more

• The DoJ issued a final rule under EO 14117 to prevent mass data transfers to countries of concern, including China, Russia, and Iran, addressing national security risks. Read more

FEATURED PRODUCT - INCIDENT RESPONSE BUNDLE

It takes considerable time, effort, and experience to build or enhance a cybersecurity incident response program. Leverage Natsar's extensive experience in this area and accelerate the building and maturity of your IR program. This bundle contains everything needed to get the program off the ground and be compliant with best practices such as NIST, CIS, ISO, SOC, and others. Save when bundling these documents and get lifetime updates at no additional cost!

Get your copy today at https://store.natsar.com/cybersecurity-incident-response-document-bundle

Have a topic you’d like us to cover? Leave a comment let us know!

Share Natsar Cyber Insights

Follow Natsar on LinkedIn or X to catch every post as it goes live.

In this weekly digest:

• Natsar’s third post in our critical infrastructure cybersecurity series - this post focused on common challenges organizations face while securing these systems and networks

• Natsar’s second post in our online scams series - this one focused on learning how to spot scams and prevent falling victim to them

• Top cybersecurity news stories for the week from around the world

• Feature Product: Risk Register

NATSAR’S POSTS THIS WEEK

Critical infrastructure is under siege from cyber threats, with risks ranging from outdated systems to supply chain vulnerabilities. Discover the top challenges and strategic solutions for safeguarding these essential systems in this must-read post that is part of our larger series on CI security.

Part two of our online scams series dives into practical steps to safeguard your finances and loved ones. Learn how to spot scams, secure your accounts, and protect against phishing. Don’t miss this essential guide to staying safe online!

CYBERSECURITY NEWS

Here are this week's major cybersecurity updates from around the world.

• In a Dec. 18 letter, Senators urged DHS to address navigation tech gaps as rivals like Russia and China advance non-GPS systems. Read more

• Juniper Networks warns SSR products with default passwords are being targeted in a Mirai botnet malware campaign. Read more

• The U.S. may ban TP-Link routers by 2025 over national security risks. TP-Link holds 65% of the U.S. market, including Defense Department use. Read more

• A federal judge who ruled Google a search monopolist is now considering solutions to address the monopoly. Read more

• Sophos patched three vulnerabilities in its Firewall product, preventing SQL injection, remote code execution, and unauthorized SSH access. Read more

• The White House, with the Open-Source Software Security Initiative, released an RFI summary outlining strategies to secure open-source software. Read more

• New SEC cybersecurity disclosure rules drove a 60% rise in reported incidents from public companies, with 78% disclosed within 8 days, per Paul Hastings LLP. Read more

• Ascension is notifying 5.6M patients and employees of a May data breach tied to the Black Basta ransomware, exposing personal and health data. Read more

FEATURED PRODUCT

Natsar’s Risk Register Template helps organizations track and manage risks with a clear, structured approach. This customizable tool enables you to define mitigation strategies, assign ownership, and calculate threat levels based on likelihood and impact. Trusted by organizations worldwide, it’s a proven solution for effective risk management.

Get your copy today at https://store.natsar.com/risk-register

Have a topic you’d like us to cover? Leave a comment let us know!

Share Natsar Cyber Insights

Follow Natsar on LinkedIn or X to catch every post as it goes live.

In this weekly digest:

• Natsar’s posts

• Top news stories

• Feature Product: On-Demand Course on Managing a Digital Forensics Lab

NATSAR’S POSTS THIS WEEK

Digital forensic labs are the unsung heroes of modern investigations, tasked with processing mountains of electronic evidence under tight deadlines. As the volume of digital devices skyrockets and judges demand faster results, how can forensic teams adapt? One solution lies in a bold idea: taking the lab to the crime scene.

Learn how to create a risk-based IT change management process to reduce outages, improve accountability, and align with best practices—plus, download a free, customizable risk matrix template to streamline your efforts.

CYBERSECURITY NEWS

Here are this week's major cybersecurity updates from around the world.

• Krispy Kreme disclosed a cyberattack on its US online ordering systems, prompting swift action to secure networks and restore systems. Read more

• New side-channel attack reveals CNN structure, enabling rivals or attackers to plagiarize AI models and steal data. Read more

• Iran-linked hackers used IOCONTROL malware to target and control US & Israel water and fuel systems, say researchers. Read more

• An international cybercriminal group stole personal data of hundreds of thousands from state social services and health systems. Read more

• The British Army used a high-energy laser on an armored vehicle to destroy drones, marking a breakthrough in counter-drone tech. Read more

• Senator Ron Wyden proposes requiring US telecoms to meet minimum cybersecurity standards to prevent hacks by nation-state attackers like Salt Typhoon. Read more

• CISA and EPA urge water facilities to secure Internet-exposed HMIs against cyberattacks. Read more

• Citrix Netscaler hit by password spray attacks targeting edge devices and cloud platforms to breach corporate networks. Read more

FEATURED PRODUCT

In this comprehensive and highly rated course, participants will delve deep into the intricacies of managing and optimizing a digital forensic laboratory. You will gain insights into the core capabilities essential for a forensic lab, understand the minimum equipment and training requirements for personnel, and recognize the importance of robust policies and procedures. The course highlights pivotal standards like ISO 17025 and provides guidance on facility design concepts, lab cybersecurity, evidence handling, budgeting, and hardware and software validation, all while ensuring robust physical security. Furthermore, attendees will master forensic report writing and explore a wealth of valuable documents, templates, and reports. You will also navigate the potential risks and legal challenges inherent in digital forensic work. This course is indispensable for anyone starting or managing a digital forensics lab, regardless of your industry or sector. Get started here: https://store.natsar.com/managing-a-digital-forensics-lab-on-demand-course

Have a topic you’d like us to cover? Leave a comment let us know!

Share Natsar Cyber Insights

Follow Natsar on LinkedIn or X to catch every post as it goes live.

In this weekly digest:

• Natsar’s posts

• Free cyber continuing professional education

• Top news stories

• A featured Natsar product

NATSAR’S POSTS THIS WEEK

Discover how the convergence of IT and OT systems is reshaping cyber threats to critical infrastructure and what it takes to defend these essential systems.

Online scams are evolving faster than ever—discover how to recognize their tricks and protect your finances in this must-read guide.

Unseen browser processes like DNS prefetching can create misleading evidence—learn how these digital artifacts can lead to wrongful accusations and why context matters in forensic analysis.

CONTINUING EDUCATION

Learn more about how cybersecurity professionals can protect critical infrastructure from cyberattacks.

CYBERSECURITY NEWS

Here are this week's major cybersecurity updates from around the world.

• A cyberattack on Blue Yonder disrupted operations for retailers like Starbucks, Sainsbury's, and Morrisons. Read more

• 73% of exposed ICS systems are in the US (38%) and Europe (35%), per Censys. Outdated protocols and exposed HMIs heighten critical infrastructure risks. Read More

• GEICO and Travelers fined $11.3M by NY for poor data security exposing info of 120K+. GEICO impacted 116K, Travelers 4K. Read More

• Cloudflare lost 55% of logs over 3.5 hours on Nov 14 due to a bug in its log collection service. Read More

• A bipartisan bill led by Sen. Cassidy aims to protect healthcare from cyberattacks with grants, training, and improved federal coordination. Read More

• Zello advises users with accounts created before November 2 to reset passwords due to a potential security breach. Read More

FEATURED PRODUCT

Natsar’s Executive Briefing Slides for Cybersecurity Incidents offer a structured, professional way to update executive leaders on incident status. This customizable deck covers essential details, from initial indicators to next steps, ensuring clear communication. Download it as a standalone resource or part of our incident response bundle, with free updates included. Visit our store today to learn more!

Have a topic you’d like us to cover? Leave a comment let us know!

Share Natsar Cyber Insights