Microsoft Patches 6 Zero-Days Under Active Attack

[TechWeb]( Follow Dark Reading: [RSS]( June 09, 2021 LATEST SECURITY NEWS & COMMENTARY [Microsoft Patches 6 Zero-Days Under Active Attack]( The June 2021 Patch Tuesday fixes 50 vulnerabilities, six of which are under attack and three of which were publicly known at the time of disclosure. [Phished Account Credentials Mostly Verified in Hours]( Almost two-thirds of all phished credentials are verified by attackers within a day and then used in a variety of schemes, including business email compromise and targeting other users with malicious code. [Cyber Resilience: The Emerald City of the Security World]( Small and midsize businesses and managed service providers must use their heart, brain, and courage as they follow the Yellow Brick Road to cyber resilience. [An Answer to APP Scams You Can Bank On]( Financial institutions' usual fraud-detection methods can't detect most authorized push payment (APP) scams, putting customers and banks at risk. [How Employees Can Keep Their 401(k)s Safe From Cybercriminals]( As retirement fund balances grow, cybercriminals are becoming more brazen in their efforts to deplete people's savings. [FBI Issued Encrypted Devices to Capture Criminals]( A sting operation delivered devices into the hands of global criminals and used the intelligence gathered to stop drug crimes. [Colonial Pipeline CEO: Ransomware Attack Started via Pilfered 'Legacy' VPN Account]( No multifactor authentication was attached to the stolen VPN password used by the attackers, Colonial Pipeline president & CEO Joseph Blount told a Senate committee today. [MORE NEWS & COMMENTARY]( HOT TOPICS [What the FedEx Logo Taught Me About Cybersecurity]( Cyber threats are staring you in the face, but you can't see them. [Data Breaches Drive Higher Loan Interest Rates]( Businesses that suffer a security breach may not see their stock price tumble, but they may pay higher rates for loans and be forced to provide collateral, researchers report. [Microsoft 365: Most Common Threat Vectors & Defensive Tips]( Security pros discuss the most typical ways attackers leverage Microsoft 365 and share their guidance for defenders. [Welcome to the New Workplace]( The pandemic has changed the landscape in which security pros work. Here are five ways how. [MORE]( EDITORS' CHOICE [First Known Malware Surfaces Targeting Windows Containers]( Siloscape is designed to create a backdoor in Kubernetes clusters to run malicious containers. [Cyber Athletes Compete to Form US Cyber Team]( Here's how security pros can showcase value to future employers: a field of friendly strife to measure their aptitude against competitors. LATEST FROM THE EDGE [How Can I Test the Security of My Home-Office Employees' Routers?]( From the most accurate to the most practical, here are a few ways to ensure both employees and organizations are protected from risk. Tech Resources - [2021 Application Security Statistics Report Vol.2]( - [The State of Endpoint Security]( - [Tech Insights: Detecting and Preventing Insider Data Leaks]( - [Stop Malicious Bots For Good: How Better Bot Management Maximizes Your ROI]( - [Case Study: Midwest Bank Gains Threat Visibility & Control with Bandura]( - [Cortex XDR Rides The Forrester Wave as a Leader]( - [Automation as the Kill Switch to Malicious Bot Attacks]( [ACCESS TECH LIBRARY NOW]( - [Smarter Security Automation for Streamlined SecOps]( A shortage of skilled IT security professionals has given rise to a whole new class of technology and practices designed to automate repetitive and time-consuming tasks in security operations. But which tasks can enterprises safely automate? How does emerging automation ... - [Threat Deception: Tricking Attackers for Fun and Defense]( [MORE WEBINARS]( FEATURED REPORTS - [Tech Insights: Detecting and Preventing Insider Data Leaks]( - [Improving Security by Moving Beyond VPN]( [MORE REPORTS]( CURRENT ISSUE [The State of Cybersecurity Incident Response]( [DOWNLOAD THIS ISSUE]( [SUBSCRIBE NOW]( [BACK ISSUES]( | [MUST READS]( | [TECH DIGEST]( PRODUCTS & RELEASES [Proofpoint Launches Cloud Native Information Protection and Cloud Security Platform]( [Claroty Unveils Zero-Infrastructure Cybersecurity Solution to Protect Industrial Enterprises]( [Horizon3.ai Raises $8.5M to Disrupt the Cybersecurity Assessments Market]( [MassMutual Introduces Consolidated Digital Platform for Financial Investment and Protection Solutions With Advisor360 degrees]( [Aiden Technologies Secures $2.9 Million]( [MORE PRODUCTS & RELEASES]( Dark Reading Daily -- Published By [Dark Reading]( Informa Tech 303 Second St., Suite 900 South Tower, San Francisco, CA 94107 To update your profile, change your e-mail address, or unsubscribe, [click here.]( To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:customerservice_informationhub@techweb.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2021]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:customerservice_informationhub@techweb.com)