Welcome to issue 25 of IT Pro 20/20, distilling the most important themes of the previous month into a simple, easy-to-read package.
This month we look at the industry-wide push for sustainable development, which was very much on display at this year’s CES. We’ve highlighted a handful of major players that are doing some pretty interesting things.
A new year also brings new opportunities, and so we’ve also explained why there’s never been a better time to start a side hustle, and how to go about it.
The next IT Pro 20/20 will be available on 28 January – previous issues can be found here. If you would like to receive each issue in your inbox as they release, you can subscribe to our mailing list here.
-
Canvas provider Instructure agreed to hackers' ransom demands – did it do the right thing?Analysis Opting to pay ransoms creates huge risks for enterprises – you’re relying on the word of criminals
-
Why are managers becoming less engaged at work?In-depth Experts shed light on the reasons behind the bleak outlook for employee engagement – and how organizations can help turn the ship around
-
Two US nationals sentenced for role in prolific fake worker laptop farmsNews The Americans were raising money for the North Korean regime by allowing fake IT workers to appear as legitimate US-based employees
-
Beware of emails threatening a code of conduct reviewNews A widespread phishing campaign has targeted tens of thousands of employees
-
Microsoft and NCSC issue alerts over hacker campaigns targeting WhatsApp, Signal messaging appsNews Microsoft warns about a sophisticated attack that starts with WhatsApp messages, while the NCSC says such incidents are on the rise
-
Is your new hire an AI clone? Microsoft says North Korean hackers are using AI to impersonate job seekers and steal company secretsNews The groups are increasingly using face-changing or voice-changing software to make their fake identities more plausible
-
Google issues warning over ShinyHunters-branded vishing campaignsNews Related groups are stealing data through voice phishing and fake credential harvesting websites
-
Thousands of Microsoft Teams users are being targeted in a new phishing campaignNews Microsoft Teams users should be on the alert, according to researchers at Check Point
-
Microsoft warns of rising AitM phishing attacks on energy sectorNews The campaign abused SharePoint file sharing services to deliver phishing payloads and altered inbox rules to maintain persistence
-
Warning issued as surge in OAuth device code phishing leads to M365 account takeoversNews Successful attacks enable full M365 account access, opening the door to data theft, lateral movement, and persistent compromise
