 Microsoft has added a new protection feature against remote control attacks. The new feature will be added to Windows 11 as the company works to improve its security after numerous incidents this year. More: - Windows 11 will now lock an account for 10 minutes after 10 failed log-in attempts, a feature that aims to reduce the danger of brute force attacks. This type of attack requires hackers to guess a victim's password in a trial-and-error process.
- While a similar feature was already available in Windows 10, Microsoft did not make it a default one. Windows 11, on the other hand, will have this feature enabled by default.
- Microsoft VP for OS security and enterprise David Weston stated that the feature is active on build 22528.1000.
Zoom Out: - Remote control attacks have been used numerous times by hacker groups. Lockbit launched an attack a few years ago, taking advantage of security flaws to remotely control telecom companies in the U.S. and Hong Kong.
- Microsoft Exchange Server has been used as a domain to breach users by Chinese hacker groups.
- Earlier this year, a 16-year-old from England was tracked as the one responsible for breaching Microsoft.
| |
 TSA has relaunched the cybersecurity guidelines for gas pipelines. Owners and operators in the field will now be able to use updated technology to be better protected against threat actors, as the industry has seen an increasingly larger number of cyberattacks in recent years. More: - The Transportation Security Administration has announced that it has revised its cybersecurity guidelines with the intention of including the input given by the energy industry.
- Some of the main goals the guideline aims to reach are:
1. Ensuring that the energy infrastructure in the U.S. can continue working even in the case of a cyberattack.
2. Create steps that would stop threat actors from accessing critical systems.
3. Have monitoring systems that can detect risk before it can cause large-scale damage. - The agency has also asked gas pipeline owners and operators to fulfill a number of conditions such as:
1. Establish a TSA-approved cybersecurity strategy.
2. Implement an incident response plan that details what concrete steps the pipeline owners and operators will take in case of a cyberattack.
3. Establish an effective system that tests the effectiveness of the organization's ability to withstand a cyberattack. - This decision comes after the energy industry has been hit with numerous cyberattacks in the past, most notably the Colonial Pipeline cyberattack.
| |
 A message from SUPER COFFEE CLEAN UP YOUR COFFEE Did you know a Starbucks Frappuccino has 52g of sugar and 370 calories? There has to be a better way to enjoy bottled coffee.
Meet the Super Coffee makeover. Improved to impress your tastebuds with 10g of creamy protein, 0g sugar, and no artificial sweeteners, it tastes just as good as Starbucks with 200mg caffeine, and just 80 calories per bottle. After appearing on Shark Tank, Super Coffee has quickly become the nation's No. 2 ranked bottle coffee brand behind Starbucks. It’s the latest and tastiest in latte innovation. As an Inside reader, you get 30% off plus FREE shipping when purchasing two 12-packs of their bestselling flavors. Try Super Coffee
| |
 A Roaming Mantis hacking campaign has managed to breach over 70,000 mobile devices so far, with the campaign now expanding to France. Roaming Mantis is a Chinese hacker group specializing in financial crime. More: - The group is using phishing as a threat vector. The breach is done in several steps.
- First, the victims are sent an SMS with a malware-infected link.
- Once the link is clicked, the malware, through geo-fencing, decides if the victim is located in France.
- Once the malware determines the victim's location, it leads the target to download it.
- Once the hackers gain access, they can collect data such as iCloud data, contact lists, call history, etc.
- The campaign is believed to have reached over 90,000 IP addresses so far.
Zoom Out: - The Roaming Mantis hacker group has consistently targeted countries such as Japan, Taiwan, Korea, India, etc. The group has been active with its SMS hacking campaign since 2020.
| |
 The Magecart hacker group hacked MenuDrive, Harbortouch, and InTouchPOS. The threat actor managed to breach 311 restaurants. More: - Magecart is a hacker group comprising numerous smaller hacker organizations specializing in credit card and financial scams. Over 50,000 records were stolen and then, later on, put for sale on the dark web.
- While MenuDrive and Harbourtouch were affected by the same campaign, InTouchPOS was breached through a different campaign. MenuDrive and HarbourTouch are believed to have been breached in early 2022 with a PHP attack that essentially manipulates the code in a company's checkout page. The attack used to breach these two platforms has been noted by the FBI in a security warning.
- The IntouchPOS campaign is still active and has not been addressed so far by the sides involved.
| |
 A message from PEOPLE.AI Learn what more than 40% of organizations already know about RevOps. The most revenue-centric companies read the tea leaves accurately. They know customers whose expectations have been shaped by the speed and personalization on the consumer side now prioritize a similar buyer’s journey on the B2B side. The key to realizing this? A centralized RevOps function, which is helping organizations immediately increase revenue by an average of 5-10% while also improving profit margins. Download this eBook to learn simple, straightforward tips to: - Overcome the top 3 most common barriers to employing revenue intelligence
- Set your team up to reap the top 4 benefits of a coordinated RO+I approach
- Leverage the optimal data stack for success by stitching insights across 3 categories of technology
Get your free ebook
| |
 The source code of a Rust-based malware variant has been offered free on the internet. The malware's creator claims to have written the code in just six hours, while analysts are tracking the malware as Luca Stealer. More: - The malware can be used to attack all operating systems since Rust is a cross-platform language.
- This hacking campaign has only been used to breach Windows so far, while it is capable of breaching credit cards, cryptocurrency wallets, etc. The malware does this by exploiting security flaws in Chromium-based browsers, an open-source project developed by Google.
- There have been 25 instances where Luca Stealer has been used so far, as hackers are using the popular messaging app Discord and Telegram bots to receive the data.
Zoom Out: - This is not the first time that malware has been offered for free. ZingoStealer malware was previously leaked on online forums by Haskers Group.
| |
Quick Hits: - When you align headless CMS with a modern DAM and analytics, you can serve personalized content that keeps people coming back.*
- The National Institute of Standards and Technology has updated its healthcare protection cybersecurity guidance, as the new document will be approved once all the comments from the representatives of the healthcare sector are taken in.
- The U.K. seized $27M in cryptocurrency assets in 2021, representing an all-time high. There had been no cryptocurrency assets confiscated in the country's history before, while the law authorities are claiming that cryptocurrencies have now become a key asset for criminal organizations.
- Policybazaar, an Indian platform that connects individuals with healthcare providers, has been breached. The publicly traded company stated that the hackers did not manage to steal critical data, while it does not know the threat actor responsible for the breach yet.
- Medical device manufacturer Biotronik will pay $13M as part of a settlement case with the DOJ. The company paid doctors to convince patients to use their medical devices, such as pacemakers.
- Super Coffee, the No. 3 ranked bottled coffee brand in the U.S. behind Starbucks and Dunkin’, is replacing the negatives with only positive ingredients.*
*This is sponsored content.
| |
Upcoming events at Inside:
| |
 |  | Arbër is an Inside writer who also has experience in entrepreneurship. He has experience covering Consumer Tech, Venture Capital, NFTs, Crypto, etc. Arbër holds a Bachelor's degree in Business from XAMK University in Finland. When he is not reading(and writing) business news, he chooses to watch sports or anime...and then read news about sports or anime. |   | | Editor | Aaron Crutchfield is based in the high desert of California. Over the last two decades, he has spent time writing and editing at various local newspapers and defense contractors in California. When he's not working, he can often be found looking at the latest memes with his kids or working on his 1962 Ford. | |
Super Coffee is just as delicious as Starbucks but contains 0g sugar, 10g of protein, and only 80 calories per bottle. | |
| |
