IT and IT security must become effective when implementing and changing the IT environment through new systems and functions. Architectural description acting as a plan agreed by various stakeholders implemented in the CAD tool, in such a way that you can automate the analysis of security and risk involved.
Another application developed on Android by the creators of the TrickBot banking Trojan can capture one-time authorization codes. The task of the app is to capture authorization codes and send it to online banking customers via SMS, as well as may carry out illegal transactions.
https://thehackernews.com/2020/03/trickbot-two-factor-mobile-malware.html
The American engineering company KBR Inc. announced that it had received a USD 26.8 million contract for engineering support in cybersecurity.
https://www.cisomag.com/kbr-to-strengthen-cybersecurity-of-usafsystems/
In Google Play applications, a family of malware has been discovered that has been downloaded almost a million times. Researchers say that 24 infected apps are designed for children; they are puzzles or racing games.
On March 20, Finastra announced problems in the operation of systems and services for customers located in North America. Approximately 3.00 am issued official confirmation that there was a breach of security of Finastry systems. The same day the company admitted that it was attacked using ransom encryption software (ransomware).
https://krebsonsecurity.com/2020/03/security-breach-disrupts-fintech-firm-finastra/
An American cybersecurity company has discovered that state-sponsored hackers are trying to access and exploit the Microsoft Exchange mail server vulnerability, which Microsoft patched as early as February.
https://www.hackread.com/hackers-exploiting-microsoft-exchange-server-vulnerability/
MechaFlounder Python backdoor scripting attacks in Turkey are so widespread that they can be compared to the scale of US malware attacks.
https://www.helpnetsecurity.com/2020/03/24/python-backdoor-attacks/
Windows 10 users report that Windows Defender scans skip files due to configured shutdown or network scanning. However, applicants do not have any exceptions set in Windows Defender preferences.
The managers ‘task is to protect users’ data and confidential data; unfortunately, they do not guarantee reliable security. Quite recently, scientists have revealed numerous vulnerabilities in some of the best password managers.
Mukashi malicious software exploits the vulnerability (CVE-2020-9054) in Zyxel NAS devices, thus allowing attackers to execute code as well as using the attack in the wild