Welcome reader to your CybersecurityHQ report

Headlines

Microsoft is answering for yet another major outage, this time in their Azure services due to a DDoS attack. The company explained that the10-hour outage was caused by protective measures triggered by the automatic detection of a DDoS attack. This left Azure Front Door and Azure Content Delivery Network suffering errors, timeouts, and high latency. Among those affected were major water services.

The company released a statement on the outage, "While the initial trigger event was a Distributed Denial-of-Service (DDoS) attack... initial investigations suggest that an error in the implementation of our defences amplified the impact of the attack rather than mitigating it.”

Tenable Holdings, a cybersecurity firm based in Columbia, Maryland, is exploring a potential sale, according to Bloomberg News. This would lead to a fairly major sale, with the company valued above $5 billion. The news sparked an 8% rise in stock during afternoon trading on Tuesday.

This comes within the context of greater consolidation in the cybersecurity industry. Though only last week, Wiz walked away from a $23 billion deal with Alphabet, Google's parent company.

The UK’s Electoral Commission has received a formal reprimand by the Information Commissioner’s Office (ICO) after 40 million voter records were found to be vulnerable to hackers. Threat actors were able to access voter information beginning in August 2021, and they maintained that access until October 2022—more than a year later. This gave them millions of voter records that included names and personal addresses.

Stephen Bonner, the ICO’s deputy commissioner, said in a statement, “If the Electoral Commission had taken basic steps to protect its systems, such as effective security patching and password management, it is highly likely that this data breach would not have happened.” The news is particularly worrying in a year of so many high profile elections, especially the US Presidential election.

Interesting Read

Researchers have now demonstrated that, using AI, they can spy on what’s visible on your screen simply by reading the electromagnetic radiation coming from your HDMI cable. By training an AI model on the task, the researchers were able to reach about 70% accuracy.

The concern? This could be used to surreptitiously collect password entries, encrypted communications, and financial data. The easiest way to combat this method of spying seems to be limiting electromagnetic leaks, which can easily be picked up remotely with a simple radio antenna.

Twitter Highlights

Employment Tip: Find Local Cybersecurity Professionals

BSides, MeetUps, and local cybersecurity events are all great places to meet fellow professionals in your area. This is key to building your network at any level of your career. With a strong network, you’ll be able to stay more resilient long term, finding the support and insights you need along the way.

For the latest openings in cybersecurity careers, check CybersecurityHQ.

Stay Safe, Stay Secure.

The CybersecurityHQ Team