Weekly Security Sprint EP 26.

In the week's Security Sprint, Andy and Jen talked about the following topics: Jen’s Cyberthreat Mash-Up Citrix! CISA Releases Cybersecurity Advisory on Threat Actors Exploiting Citrix CVE-2023-3519.  New critical Citrix ADC and Gateway flaw exploited as zero-day Citrix Releases Security Updates for NetScaler ADC and Gateway. Citrix has released security updates to address high and critical vulnerabilities (CVE-2023-3519, CVE-2023-3466, and CVE-2023-3467) affecting NetScaler ADC and NetScaler Gateway. ACSC: Citrix Products NetScaler ADC and NetScaler Gateway Zero Day Vulnerability 2023-050: Citrix NetScaler Critical Vulnerability. PDF. MOVEit! EMSISOFT - Unpacking the MOVEit Breach: Statistics and Analysis. The tail of the MOVEit hack may be longer than we realize. Clop now leaks data stolen in MOVEit attacks on clearweb sites. Clop gang to earn over $75 million from MOVEit extortion attacks Microsoft expanding cloud logging to give customers deeper security visibility. CISA: CISA and Microsoft Partnership Expands Access to Logging Capabilities Broadly CISA: Microsoft to Offer Some Cybersecurity Free After Suspected China Hack More ransomware! Coveware Q2 Ransomware Report: Ransom Monetization Rates Fall to Record Low Despite Jump In Average Ransom Payments. Quarterly GRIT Ransomware Report – Q2 2023. Complete Q2 GRIT Ransomware Report here. “ DOJ merges cyber, cryptocurrency units to go after ransomware attacks The FBI’s Cynthia Kaiser on how the bureau fights ransomware The Week in Ransomware - July 21st 2023 - Avaddon Back as NoEscape Ransomware Roundup - Cl0p QILIN Ransomware Report  Linux Ransomware Poses Significant Threat to Critical Infrastructure Between Two Nerds: Shaping ransomware group behaviour (podcast)   New blog posts from CISA! CISA: Take the First Steps Towards Better Cybersecurity With these Four Goals.  CISA: Evolving CDM to Transform Government Cybersecurity Operations and Enable CISA’s Approach to Interactive Cyber Defense  Jen manifests her Cybersecurity Evangelist to talk scams! Called a bogus airline customer support number? Google is hustling to fix that Plane sailing for ticket scammers: How to keep your flight plans safe Increase in Tech Support Scams Targeting Older Adults and Directing Victims to Send Cash through Shipping Companies Scams Targeting the Elderly: FBI IC3 Increase in Tech Support Scams Targeting Older Adults and Directing Victims to Send Cash through Shipping Companies FBI: Tech support scams now use shipping companies to collect cash Health Preparedness! FACT SHEET: White House Launches Office of Pandemic Preparedness and Response Policy and more on severe weather, climate and health: Mosquitos Are Moving to Higher Elevations—and So Is Malaria. Tornado damage to Pfizer plant will probably create long-term shortages of some drugs hospitals need WSJ: The World Bakes Under Extreme Heat Boiling in Phoenix: City set to break U.S. record for consecutive days over 110 degrees Texas power use hits record high as heatwave lingers Heatwave brings health warnings as extreme weather grips globe The heat index reached 152 degrees in the Middle East — nearly at the limit for human survival Tokyo Heat Smashes 150-Year Trend as Extreme Weather Bakes Globe Smoke from Canadian wildfires places 60 million US residents under air quality alerts Ongoing rounds of rain to keep flash flood risk elevated in northeastern US   QH: SAVE THE DATE! H2OSecCon Powered by WaterISAC. United States tops 400 mass shootings in 2023 IBM Report: Half of Breached Organizations Unwilling to Increase Security Spend Despite Soaring Breach Costs. Report overview. PDF in DB. What’s new in the 2023 Cost of a Data Breach report New CISA Products Released.  CISA Develops Factsheet for Free Tools for Cloud Environments.  NSA, CISA Release Guidance on Security Considerations for 5G Network Slicing.  New Zealand shooter kills two ahead of Women's Soccer World Cup