Welcome reader to your CybersecurityHQ report.

Headlines

Microsoft has announced that its highly controversial Recall feature will be turned off by default on its Copilot+ PCs. The announcement came on Friday, along with new updates about safety and security improvements being made to Recall, including proof of presence and “just in time” decryption.

The changes reflect major backlash by consumer privacy advocates and cybersecurity experts who warned about the risks of Recall. Despite the controversy, the feature will still be a prominent selling point in marketing Copilot+ PCs.

Three US lawmakers are now calling for an investigation into NewsBreak, a news aggregation app created in China. The call for scrutiny comes after Reuters reporting uncovered its Chiniese origins, drawing on court documents related to copyright infringement and internal memos describing their use of AI-generated news stories.

NewsBreak, however, asserts that it is a US company despite being a subsidiary of the Chinese news aggregation app Yidian. There is no clear data yet that suggests NewsBreak censors content or emphasizes content favorable to the Chinese Communist Party.

The City Hall in Cleveland, Ohio, announced a temporary closure on Monday due to a cyber incident. Most internal systems shut down, except for emergency services. Mayor Justin Bibb’s office stated, “The City of Cleveland is currently investigating a cyber incident and though we have not confirmed its nature and scope, we are taking this incident seriously.”

This comes hot off the heels of Cleveland Health Clinic announcing a warning about cyber attacks. On June 3, their chief information security officer, Vugar Zeynalov, said, “Given our size and complexity, and the number of possible attack vectors, we have to assume that the attackers are going to get a foothold in our environment just like in real warfare."

Interesting Read

Computer log tampering is an inevitable aspect of system compromise. Why are computer logs such a gold mine for hackers? Kevin Townsend's latest article for SecurityWeek outlines the appeal in rich detail.

The piece details why logs often go overlooked, the kinds of value they contain for threat actors, and the best strategies for making them more secure. It’s a great write-up and a wonderful refresher on the state of log security.

Employment Tip: Take Initiative

Not all cybersecurity positions are given. Many are made. Proactively analyzing a company’s weaknesses and making a compelling offer to solve those issues can actually create opportunity. This principle works whether you are looking to move up in your current organization or jump ship to a new one.

For the latest openings in cybersecurity careers, check CybersecurityHQ.

Stay Safe, Stay Secure.

The CybersecurityHQ Team