All of us at Tripwire’s Vulnerability Exposure and Research Team (VERT) are constantly looking out for interesting stories and developments in the infosec world. Here’s what cybersecurity news stood out to us during the week of January 31, 2022. We’ve also included the comments from a few folks here at Tripwire VERT. Update Force-Pushed to Protect QNAP NAS Devices against DeadBolt Ransomware QNAP force-pushed a security update to customers’ network access storage (NAS) devices to…

The UK government has unveiled plans to strengthen its Online Safety Bill, which includes the creation of new criminal offenses. The legislation, first drafted in May 2021, will place new obligations on social media sites and other services hosting user-generated content or allowing people to talk to others online to remove and limit the spread of illegal and harmful content. This includes child sexual abuse, terrorist material and suicide content. The UK’s communications regulator, Ofcom, will be…

European police have found and referred 563 pieces of terrorist content to service providers in the region, as a UK man was jailed for sharing a bomb-making manual online. The Referral Action Day took place last week at Europol’s headquarters. The EU’s Internet Referral Unit (EU IRU) coordinated the referral activity with specialized counter-terrorism units from France, Germany, Hungary, Italy, the Netherlands, Portugal, Spain, Switzerland and the UK. In particular, they were looking for content on “explosive…

Airport services giant Swissport is restoring its IT systems after a ransomware attack struck late last week, delaying flights. The Zurich-headquartered firm operates everything from check-in gates and airport security to baggage handling, aircraft fuelling and de-icing and lounge hospitality. It claims to have provided ground services to 97 million passengers last year and handled over five million tons of air freight. Swissport took to Twitter on Friday to warn its IT infrastructure had been hit by…

In his time with the Worcester Red Sox, baseball IT exec Matthew Levin grew to be a valuable two-way player. As senior vice president and chief financial and technology officer, Levin wore two hats for the Triple-A affiliate of the Boston Red Sox, balancing a joint role that married his deep passions for technology, finance, and baseball — one that saw him simultaneously examining issues from a cost perspective and seeking to innovate by deploying…

Data scientists discover insights from structured and unstructured data to help organizations improve revenue, reduce costs, increase business agility, improve customer experiences, and develop new products. Data scientist teams typically seek to identify key data assets that can be turned into data pipelines that feed maintainable tools and solutions, from credit card fraud monitoring solutions used by banks to tools used to optimize the placement of wind turbines in wind farms. The data scientist role…

Yet another cryptocurrency firm has been hacked to the tune of millions of dollars. Meter provides decentralized finance (DeFi) infrastructure services, linking siloed blockchains for users with so-called “cross-chain bridges.” Over the weekend, it revealed that an unauthorized intruder had managed to exploit a bridge vulnerability to mint a large number of Binance Coins (BNB) and wrapped Ethereum (WETH), while running down its reserves. After halting bridge transactions immediately, the firm investigated the source of…