This is the Sans news bites newsletter for Tuesday, February 21, 2023.
This newsletter has coverage of some of the stuff we’ve recently blogged.
Top of the news
- Twitter Eliminates SMS 2FA for Non-Paying Users
- GoDaddy Discloses Multi-year Breach
- Fortinet Security Updates Fix 40 Vulnerabilities
- SolarWinds Releases Security Advisories; Fixes Will be Available Within the Next Week
The top of the news and no surprise is the Twitter debacle of why they have decided to remove SMS authentication for those like me who will not pay for Twitter Blue.
Even the comments within this newsletter made me chuckle and wonder if Twittr is ready to face paying customers. Two of the many comments indicate that people may not necessarily pay, but why pay for higher grade security? You don’t need to pay for the higher grade security like authenticator apps and keys.
Godaddy suffered a breach, and this is the third in so many years if I’m counting correctly. The comments in this section ask whether services like bluehost, hostmonster and others might be at the same risk. Maybe its time to talk about security with my provider, but I think it is much better within the last 8 years than it was years ago. I didn’t know that Godaddy even offered Cpannel as an option.
Solar Winds is releasing patches for some of their products soon. We covered on the various podcasts their debacle and this might be their first step on fixing things since then. I guess we’ll see.
The rest of the news
- FBI Discloses Cybersecurity Incident
- • UK Plans Updates to Computer Misuse Act
- VA Postpones Oracle Cerner EHR Rollout in Ann Arbor
- Outlook Users Reporting Spam in Inboxes
- Norwegian Police Recover Virtual Currency Stolen from Axie Infinity
I think in this section the FBI story is one of the biggest thing I spotted in my sources. This blog post talks about my initial thoughts and everyone seems to agree that things are contained for now.
Did you see anything else you want to talk about? Let’s hear from you.
Discover more from The Technology blog and podcast
Subscribe to get the latest posts sent to your email.