Federal agencies are failing to protect sensitive data, Senate report finds. The report found that seven of the eight agencies reviewed still use legacy systems tha t no longer have security updates supported by their vendor. The practice can leave agencies vulnerable to foreign hacking, the report notes. TODAY ’S N EWS : THREATS : • Code Execution Flaw Found in Cisco Firepower Device Manager On-Box Software • Chipotle Emails Serve Up Phishing Lures • Raccoon stealer-as-a-service will now try to grab your cryptocurrency • Bugs in Chrome’s JavaScript engine can lead to powerful exploits. This project aims to stop them INTERNATIONAL NEWS : • Italian vaccination registration system down in apparent ransomware attack WARNING: This document is the exclusive property of the California Cyber security Integration Center and abides by Traffic Light Protocol standards for distribution purposes. It may contain information exempt from public release under the California Public Records Act. Recipients must control, store, handle, transmit, distribute and dispose of this product in accordance with the TLP standard relating to shared intelligence. Do not release to the public, media, or other personnel who do not have a valid need-to-know without prior ap proval of an authorized CAL-CSIC official. 2 MORNING REPORT CALIFORNIA CYBERSECURITY INTEGRATION CENTER MORNING REPORT CALIFORNIA CYBERSECURITY INTEGRATION CENTER O THER STORIE S : • Responsible Cyber Offense • Rethinking Cybersecurity at Research Labs • Attivo Networks awarded US government defense contracts for cybersecurity • Zoom Agrees to Settle Security Lawsuit for $85 Million ATTACHMENTS : • No Attachments MONTHLY THREAT BRIEF TBD AUGUST 2021 @1:30PM PST NOT REGISTERED? REGISTER HERE Warning: Do not distribute outside the California Cybersecurity Integration Center w ithout permission of the Cal-CSIC Commander/Deputy Commander. Cal-CSIC makes no representation or guarantee regarding the accuracy and/or currency of the information as reported by the referenced sources. Cal-CSIC does not claim or assert any rights in the referenced source material. This email contains raw and unfettered media reports. It is meant for internal use only.

Federal agencies are failing to protect sensitive data, Senate report finds. The report found that seven of the eight agencies reviewed still use legacy systems tha t no longer have security updates supported by their vendor. The practice can leave agencies vulnerable to foreign hacking, the report notes. TODAY ’S N EWS : THREATS : • Code Execution Flaw Found in Cisco Firepower Device Manager On-Box Software • Chipotle Emails Serve Up Phishing Lures • Raccoon stealer-as-a-service will now try to grab your cryptocurrency • Bugs in Chrome’s JavaScript engine can lead to powerful exploits. This project aims to stop them INTERNATIONAL NEWS : • Italian vaccination registration system down in apparent ransomware attack WARNING: This document is the exclusive property of the California Cyber security Integration Center and abides by Traffic Light Protocol standards for distribution purposes. It may contain information exempt from public release under the California Public Records Act. Recipients must control, store, handle, transmit, distribute and dispose of this product in accordance with the TLP standard relating to shared intelligence. Do not release to the public, media, or other personnel who do not have a valid need-to-know without prior ap proval of an authorized CAL-CSIC official. 2 MORNING REPORT CALIFORNIA CYBERSECURITY INTEGRATION CENTER MORNING REPORT CALIFORNIA CYBERSECURITY INTEGRATION CENTER O THER STORIE S : • Responsible Cyber Offense • Rethinking Cybersecurity at Research Labs • Attivo Networks awarded US government defense contracts for cybersecurity • Zoom Agrees to Settle Security Lawsuit for $85 Million ATTACHMENTS : • No Attachments MONTHLY THREAT BRIEF TBD AUGUST 2021 @1:30PM PST NOT REGISTERED? REGISTER HERE Warning: Do not distribute outside the California Cybersecurity Integration Center w ithout permission of the Cal-CSIC Commander/Deputy Commander. Cal-CSIC makes no representation or guarantee regarding the accuracy and/or currency of the information as reported by the referenced sources. Cal-CSIC does not claim or assert any rights in the referenced source material. This email contains raw and unfettered media reports. It is meant for internal use only.